The new EU General Data Protection Regulation (GDPR), which came into force on 25 May 2018, aims to standardize data protection law within Europe in order to give individuals more control over their data. As such, the new standard applies in all EU countries regarding the protection of personal data of customers, agents, employees, suppliers, etc.

Greater rights for users

Users now have easier access to their data. Everyone has the right to know what data is/has been collected about them. Users are also entitled to clear and easily understandable information about who processes their data for what purpose, and how and where that processing takes place.

Users also have the right to be forgotten. In future, it will therefore be easier for individuals to have information that has been published about them, deleted.

US companies bound by European data protection law

The new rules not only apply to companies based in Europe. US companies also have to comply with the GDPR if they want to offer their services on the European market. The argument that US companies are only bound by US regulations, which was always a popular argument, no longer applies.