GDPR is legislation written to protect EU citizens from privacy and data breaches in a world that is vastly different to when the Data Protection Act was established.
- Specifies what is “personal data”
- Regulates what can be done with “personal data”
- Define the roles and responsibilities of “controllers” and “processors”
- Answer the question of what is considered “consent”