What is GDPR?
The General Data Protection Regulation is a law that gives European Union residents more control over their personal data and seeks to clarify rules and responsibilities for online services with European users. The regulation expands the scope of what companies must consider personal data, and it requires them to closely track the data they’ve stored on EU residents. For example, if someone in the EU wants a company to delete their data, a company will have to comply.
How does GDPR effect businesses?
Because the EU law applies to any organization that collects, processes, or stores data of European citizens, major online companies and businesses are effected. This means if your business collects information on EU residents, you’ll have to abide by the new law. Essentially, the GDPR has created a new global standard for data protection.
How does this impact non-EU residents?
According to CNET, most states in the U.S. have their own laws governing data breaches and notification requirements, and most apply to only a limited type of data like Social Security numbers and health or financial information.