The protection of individuals in relation to the processing of their personal data is a European fundamental right laid down in the Charter of Fundamental Rights of the European Union and the Treaty on the Functioning of the European Union. Businesses that want to process personal data of EU residents must therefore respect strict rules and conditions.
These rules and conditions are now predominantly laid down in the new EU General Data Protection Regulation (GDPR). The GDPR replaces the EU’s 20-years-old Data Protection Directive (95/46/EC) and the 28 national laws of the EU Member States that implemented this Directive.
The aim of the GDPR is to provide a uniform law that strengthens the rights of individuals with regard to the processing of their personal data while at the same time facilitating the free flow of data in the digital single market and reducing the administrative burden for businesses.
|