On May 25, 2018, the General Data Protection Regulation (GDPR) came into effect for those who store the data of European Union (EU) citizens or might potentially receive traffic from them.
In essence, it gives EU residents more control over their data and includes a right-to-erasure portion that allows people to request that companies delete their details in some cases. Besides ensuring that data gets collected legally, the law obliges the relevant entities to protect that information and safeguard it from misuse. Following some types of data breaches, the affected companies must also notify the individuals harmed. Failing to so could trigger fines of up to €20m ($23.2m) or 4% of a business’ annual worldwide revenue, for the worst violations.
Author: Kayla Matthews