The General Data Protection Regulation (GDPR) (2018) aims to give EU citizens control over their private and personal data. It provides policies and guidelines for keeping customers’ personal data secure. Compliance is essential for all organisations that hold the personal data of EU citizens.
The Data Protection Act (2018), which contains the same data protection principles as the GDPR, is the UK’s implementation.