What is the GDPR?
In 2016, the European Union (EU) passed a new, comprehensive data privacy law, the General Data Protection Regulation (GDPR). The GDPR went into effect on May 25, 2018, and expanded the rights of EU individuals, and places stringent requirements on organizations that control and/or process personal data.
Importantly, the GDPR applies not only to organizations that are located in the EU, but also to those located outside the EU that offer goods or services to individuals in the EU. NAVEX and many of our customers are impacted by the GDPR.