On May 25, 2018 the General Data Protection Regulation (GDPR) is entering into force. It requires organizations to put more emphasis on the human behind the data record. This data has to be protected and should hold him accountable. If this does not work out, organizations are facing high penalties.

Territorial applicability

The EU-GDPR protects a wide range of persons. Organizations that process data of EU citizens in their systems are governed by this regulation. They do not need to be located in the EU or use a server of the EU.

The affected data

Solely anonymous data, which is data whose personal origin is no more identifiable, shall not fall under the scope of this regulation.