What is GDPR exactly?
The General Data Protection Regulation (GDPR) is a new European Union (EU) privacy law that will come into effect on 25th May 2018. It replaces the 1995 EU Data Protection Directive (DPD).
Its objective is to improve the protection of the personal data of EU citizens and ensure that organizations who collect, store and process Personally Identifiable Information (PII) – such as email addresses or phone numbers – operate in a well defined framework. PII are any data that used alone or with other data can be used to identify a person.