6. GDPR – general data protection regulation, especially in EU (25.01.2019)

GDPR (Gazmend Gjonbalaj)

The General Data Protection Regulation is a legal framework that sets guidelines for the collection and processing of personal information from individuals who live within the European Union (EU). Since the Regulation applies regardless of where websites are based (hosted), it must be heeded by all sites that attract European visitors, even if they don’t specifically market goods or services to EU residents.  The GDPR mandates that EU visitors be given a number of data disclosures. The site must also take steps to facilitate such EU consumer rights as timely notification in the event of personal data being breaches.  Adopted in April 2016, the Regulation came into full effect in May 2018, after a two-year transition period.