The General Data Protection Regulation (GDPR) is an EU regulation that became effective on the 25th of May 2018. It imposes a number of obligations on individuals and entities collecting personal data of EU residents, including, but not limited to, (i) implementing appropriate technical and organizational measures to ensure the security of the collected personal data, (ii) processing the personal data in a lawful manner, (iii) demonstrating their compliance with the GDPR, (iv) concluding data processing agreements with data processors (if any), and (v) reporting data breaches to the competent authorities.
If you would like to see the entire article, please click here.