Over the last decades, the web has become significantly more social and made communication among companies and users much easier. At the same time, terms such as “privacy” were in many cases underestimated because of the abundance of public shared personal data. Users are dynamically contributing to the content production of the web, and they often get involved in a “game” where their personal data becomes the actual product. It is not unusual for a user to misunderstand that his personal data is information that could be publicly shared without any special protection.
Recently, the European Union updated the rules in the area of personal data protection. Historically, the Data Protection Directive (Directive 95/46/EC) regulated the processing of personal data within the European Union. However, in April 2016, after 20 years, the European Parliament approved a new law named GDPR (General Data Protection Regulation). The GDPR provides important updates to the existing directive, but also, will have a broader scope and bring several new requirements for data controllers and data processors. It will be applicable as of 25 May 2018, and at that time all companies operating in the EU, wherever they are based, are expected to comply.
We are about to publish a series of articles to introduce the importance of personal data protection, and provide an overview of how the new regulation will impact businesses that process personal data. Let’s start analyzing the scope of applicability of the Regulation: we will break down the definition of “Personal Data” and “Processing” of such data, the players involved and territorial scope.
GDPR Overview: Decrypting the regulation in series
Source: Joomla – Community Magazine