The General Data Protection Regulation (GDPR) is a regulation in the European Union (EU) designed to strengthen and unify privacy and personal data protections for all individuals within the EU.

The GDPR applies to organisations located within the EU, as well as organisations located outside of the EU that offer goods or services to, or monitor the behaviour of, individuals within the EU. It applies to all companies processing and holding the personal data of individuals residing in the EU regardless of the company’s location.

‘Personal data’ is any information that can be used to directly or indirectly identify a person. It can be anything from a name, photo, email address or bank details to posts on social networking websites, medical information or a computer IP address.

The GDPR applies to organisations located within the EU, as well as organisations located outside of the EU that offer goods or services to, or monitor the behaviour of, individuals within the EU. It applies to all companies processing and holding the personal data of individuals residing in the EU regardless of the company’s location.

‘Personal data’ is any information that can be used to directly or indirectly identify a person. It can be anything from a name, photo, email address or bank details to posts on social networking websites, medical information or a computer IP address.