The text of the widely anticipated GDPR was published in the Official Journal of the European Union on 4 May 2016.
The GDPR sets the new EU-rules for handling of personal data. It is aimed at enhancing data protection rights of individuals and improving business opportunities in the digital single market. Following a two year implementation period, the GDPR will be applied across the European Union from 25 May 2018.
As a regulation, it will substitute local EU data protection laws without the need for any implementing legislation.
All businesses in the EU and all non-EU businesses that are dealing with data of EU-citizens or direct their business activities to the EU will be affected by the GDPR. This extra-territorial scope of EU data protection laws is new and will be a challenge for non-EU businesses.
Companies must now start to get ready for GDPR. Patrick F. O’Reilly will be helping companies to get ready for GDPR individually and through a series of events and posts on this website.
The latest versions of the text (in all EU languages) of the GDPR can be viewed here – http://eur-lex.europa.eu/legal-content/EN/TXT/?uri=consil:ST_5419_2016_INIT)