"GDPR" redirects here. For the economics term, see Gross domestic product of region.
Regulation (EU) 2016/679
European Union regulation
Text with EEA relevance
Title
Regulation on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (Data Protection Directive)
Made by
European Parliament and Council of the European Union
Journal reference
L119, 4 May 2016, p. 1–88
History
Date made
14 April 2016
Implementation date
25 May 2018
Preparative texts
Commission proposal
COM/2012/010 final – 2012/0010 (COD)
Other legislation
Replaces
Data Protection Directive
Current legislation
The General Data Protection Regulation (Regulation (EU) 2016/679, abbreviated GDPR) is a European Union regulation on information privacy in the European Union (EU) and the European Economic Area (EEA). The GDPR is an important component of EU privacy law and human rights law, in particular Article 8(1) of the Charter of Fundamental Rights of the European Union. It also governs the transfer of personal data outside the EU and EEA. The GDPR's goals are to enhance individuals' control and rights over their personal information and to simplify the regulations for international business.[1] It supersedes the Data Protection Directive 95/46/EC and, among other things, simplifies the terminology.
The European Parliament and Council of the European Union adopted the GDPR on 14 April 2016, to become effective on 25 May 2018. As an EU regulation (instead of a directive), GDPR is directly applicable with force of law on its own without the need of transposition. However, it also provides flexibility for individual member states to modify (derogate from) some of its provisions.
The regulation became a model for many other laws around the world, including in Turkey, Mauritius, Chile, Japan, Brazil, South Korea, South Africa, Argentina and Kenya. After leaving the European Union the United Kingdom enacted its "UK GDPR", identical to the GDPR. The California Consumer Privacy Act (CCPA), adopted on 28 June 2018, has many similarities with the GDPR.[2]
^"Presidency of the Council: 'Compromise text. Several partial general approaches have been instrumental in converging views in Council on the proposal for a General Data Protection Regulation in its entirety. The text on the Regulation which the Presidency submits for approval as a General Approach appears in annex,' 201 pages, 11 June 2015, PDF". Archived from the original on 25 December 2015. Retrieved 30 December 2015.
^Francesca Lucarini, "The differences between the California Consumer Privacy Act and the GDPR" Archived 12 July 2020 at the Wayback Machine, Adviser
and 26 Related for: General Data Protection Regulation information
The GeneralDataProtectionRegulation (Regulation (EU) 2016/679, abbreviated GDPR) is a European Union regulation on information privacy in the European...
processing of personal data. The General Data ProtectionRegulation, adopted in April 2016, superseded the DataProtection Directive and became enforceable on 25...
Union's GeneralDataProtectionRegulation (GDPR) and replaces the DataProtection Act 1998. The Act is due to be significantly amended by the Data Protection...
The General Personal DataProtection Law (Portuguese: Lei Geral de Proteção de Dados Pessoais, or LGPD; Lei 13709/2018), is a statutory law on data protection...
2002 (ePrivacy Directive) and would be lex specialis to the GeneralDataProtectionRegulation. It would particularise and complement the latter in respect...
described in Articles 37, 38 and 39 of the European Union (EU) GeneralDataProtectionRegulation (GDPR). Many other countries require the appointment of a...
superseded by the DataProtection Act 2018 (DPA 2018) on 23 May 2018. The DPA 2018 supplements the EU GeneralDataProtectionRegulation (GDPR), which came...
consistent application of the GeneralDataProtectionRegulation (GDPR) and to promote cooperation among the EU’s dataprotection authorities. On 25 May 2018...
Finnish DataProtection Authority (DPA) fined Vastaamo 608,000 euros for violating the provisions of the GeneralDataProtectionRegulation (GDPR). This...
or bodies that collect and manage personal data". The EU GeneralDataProtectionRegulation requires data controllers who have been informed that an individual...
United Kingdom dataprotection regimes, which centre primarily on the GeneralDataProtectionRegulation (GDPR), the term "personal data" is significantly...
as data privacy or dataprotection. GeneralDataProtectionRegulation (GDPR) (European Union) General Personal DataProtection Law (Brazil) Data Protection...
between the ePrivacy Regulation (ePR) and the GeneralDataProtectionRegulation (GDPR). Some EU lawmakers had hoped the ePrivacy Regulation (ePR) could come...
European Union's new GeneralDataProtectionRegulation (GDPR) demands for secure data storage of personal information. Pseudonymized data can be restored...
Protection Act 2018, which implements the European Union's GeneralDataProtectionRegulation (GDPR). Registration under both Acts carries a fee, the proceeds...
protection/privacy. The data minimization principle is the second of the six fundamental privacy principles set forth in the GeneralDataProtection Regulation...
the California Consumer Privacy Act (CCPA) and the European GeneralDataProtectionRegulation (GDPR). In this case, the new header would be automatically...
European Union GeneralDataProtectionRegulation (GDPR) and Australia's Privacy Amendment (Notifiable Data Breaches) Act 2017 (Cth), have added data breach notification...
in the uniform application of the DataProtection Directive and the superseding GeneralDataProtectionRegulation (GDPR). The EDPS and the Working Party...
controlling the flow of data and using it to gain power. The critiques expressed in the 2012 GeneralDataProtectionRegulation (GDPR) draft of the European...
other languages. TellmeGen says it follows GeneralDataProtectionRegulation, which is an EU regulation for data privacy. TellmeGen legal consent document...