GDPR
On 25 May 2018, new data protection laws came into force due to the introduction of Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation – "GDPR").
The new rules regulate the protection of personal data and were adopted in the form of a regulation, which means that they are directly applicable to all businesses that process personal data within the territory of the European Union. The regulation aims to harmonise the protection of fundamental rights and individual freedoms across the European Union, thus ensuring the free flow of personal data between the Member States.