The General Data Projection Regulation is a European Union privacy law that came into effect on May 25, 2018. It has been years in the making, and is to replace the last major piece of EU privacy law which date from 1995. The GDPR applies to processing carried out by organisations operating within the EU. It also applies to organisations outside the EI that offer goods or services to individuals in the EU
- Lawfulness fairness and transparency
- Purpose limitation
- Data minimisation.
- Storage limitation
- Integrity and confidentiality (security)