General Data Protection Regulation: Difference between revisions

(4 intermediate revisions by 2 users not shown)

Line 1:

The '''{{Wplink|General Data Protection Regulation}}''' (GDPR) is the European Union's comprehensive data privacy and security law that went into effect on May 25, 2018.<ref>[https://gdpr.eu/what-is-gdpr/ "What is GDPR, the EU’s new data protection law?"] - gdpr.eu - 25 May 2018 ([http://web.archive.org/web/20260128031436/https://gdpr.eu/what-is-gdpr/ Archived])</ref> The regulation applies to any organization worldwide that processes data related to EU residents, regardless of the organization's location. It represents the world's most stringent approach to data protection, with potential fines for violations reaching up to €20 million or 4% of global revenue, whichever is higher.

The '''{{Wplink|General Data Protection Regulation}}''' (GDPR) is the [[European Union]]'s comprehensive data privacy and security law that went into effect on May 25, 2018.<ref>[https://gdpr.eu/what-is-gdpr/ "What is GDPR, the EU’s new data protection law?"] - gdpr.eu - 25 May 2018 ([http://web.archive.org/web/20260128031436/https://gdpr.eu/what-is-gdpr/ Archived])</ref> The regulation applies to any organization worldwide that processes data related to EU residents, regardless of the organization's location. It represents the world's most stringent approach to data protection, with potential fines for violations reaching up to €20 million or 4% of global revenue, whichever is higher.

The regulation mandates several key requirements for organizations processing EU residents' personal data. These include obtaining explicit consent for data collection, ensuring data minimization and purpose limitation, implementing appropriate security measures, and honoring individuals' rights regarding their personal data. Organizations must also maintain detailed documentation of their data processing activities, report data breaches within 72 hours, and in some cases appoint Data Protection Officers. The regulation defines personal data broadly, encompassing everything from basic identifiers like names and email addresses to more complex data like location information, biometric data, and online identifiers.

Line 58:

Outsourcing data processing to service providers is no excuse not to comply with GDPR, it is still up to the controller to ensure that the GDPR is complied with.

==Applicability outside of the European Union==

===United Kingdom===

[[United Kingdom]] adopted GDPR before formally withdrawing from the [[European Union]], after which it's referred to as UK GDPR. The UK does not restrict the transfer of personal data to countries within the EEA under UK GDPR, but is a third country under the EU GDPR. As part of the withdrawal agreement, the European Commission committed to perform an adequacy assessment, meaning that personal data may be transferred from EU member states to the UK.

==See also==

Line 67:

Line 73:

[[Category:~~Pro-consumer articles~~]]

[[Category:Positive laws]]

[[Category:Legislation]]

[[Category:International legislation]]

[[Category:EU legislation]]

[[Category:British legislation]]

@@ Line 1: / Line 1: @@
-The '''{{Wplink|General Data Protection Regulation}}''' (GDPR) is the European Union's comprehensive data privacy and security law that went into effect on May 25, 2018.<ref>[https://gdpr.eu/what-is-gdpr/ "What is GDPR, the EU’s new data protection law?"] - gdpr.eu - 25 May 2018 ([http://web.archive.org/web/20260128031436/https://gdpr.eu/what-is-gdpr/ Archived])</ref> The regulation applies to any organization worldwide that processes data related to EU residents, regardless of the organization's location. It represents the world's most stringent approach to data protection, with potential fines for violations reaching up to €20 million or 4% of global revenue, whichever is higher.
+The '''{{Wplink|General Data Protection Regulation}}''' (GDPR) is the [[European Union]]'s comprehensive data privacy and security law that went into effect on May 25, 2018.<ref>[https://gdpr.eu/what-is-gdpr/ "What is GDPR, the EU’s new data protection law?"] - gdpr.eu - 25 May 2018 ([http://web.archive.org/web/20260128031436/https://gdpr.eu/what-is-gdpr/ Archived])</ref> The regulation applies to any organization worldwide that processes data related to EU residents, regardless of the organization's location. It represents the world's most stringent approach to data protection, with potential fines for violations reaching up to €20 million or 4% of global revenue, whichever is higher.
 The regulation mandates several key requirements for organizations processing EU residents' personal data. These include obtaining explicit consent for data collection, ensuring data minimization and purpose limitation, implementing appropriate security measures, and honoring individuals' rights regarding their personal data. Organizations must also maintain detailed documentation of their data processing activities, report data breaches within 72 hours, and in some cases appoint Data Protection Officers. The regulation defines personal data broadly, encompassing everything from basic identifiers like names and email addresses to more complex data like location information, biometric data, and online identifiers.
@@ Line 58: / Line 58: @@
 Outsourcing data processing to service providers is no excuse not to comply with GDPR, it is still up to the controller to ensure that the GDPR is complied with.
+==Applicability outside of the European Union==
+{{Main|wikipedia:General Data Protection Regulation}}
+===United Kingdom===
+[[United Kingdom]] adopted GDPR before formally withdrawing from the [[European Union]], after which it's referred to as UK GDPR. The UK does not restrict the transfer of personal data to countries within the EEA under UK GDPR, but is a third country under the EU GDPR. As part of the withdrawal agreement, the European Commission committed to perform an adequacy assessment, meaning that personal data may be transferred from EU member states to the UK.
 ==See also==
@@ Line 67: / Line 73: @@
 <references />
-[[Category:Pro-consumer articles]]
+[[Category:Positive laws]]
 [[Category:Legislation]]
+[[Category:International legislation]]
 [[Category:EU legislation]]
+[[Category:British legislation]]