Skip to content ↓


The General Data Protection Regulation (GDPR) was adopted by the EU in April 2016 and will replace the current EU Data Protection Directive 95/46/EC.  The GDPR introduces new obligations to data processors and data controllers, including those based outside the EU.  Given that infringement can lead to fines of up to 4% of annual worldwide turnover or €20 million, it is important for companies to assess how the GDPR will affect them and prioritise preparations to comply by May 2018.