General Data Protection Regulation
The General Data Protection Regulation (GDPR) (Regulation (European Union) 2016/679) was adopted on 27 April 2016. It took effect on 25 May 2018.
The regulation is approved by the European Parliament, the Council of the European Union and the European Commission. It protects people's personal data throughout the European Union (EU). The decree also affects data exports from the EU.
The GDPR is aimed at giving citizens control over their personal data. It simplifies regulations for economic relations with other countries by making the EU procedures standardised. The GDPR replaces the Data Protection Directive of 1995. The new GDPR law doesn't need any changes in local laws within the EU. The regulation is binding.
People and companies who don't comply with the GDPR law may face a fine of up to 20,000,000 euros, or up to 4% of the company's profits from the previous year, whichever number is higher.
Rules enforced
![[icon]](/wiki/File:Wiki_letter_w_cropped.svg?lang=simple){kind=small} | This section needs to be made bigger. You can help by adding to it. |
The General Data Protection Regulation enforces rules that protect people against a wide variety of privacy issues. It enforces the right for people to lawfully agree with companies to use their private information. It also enforces the right for people to have their private information no longer accessible by a company.
Timeline
 | The English used in this article or section may not be easy for everybody to understand. |
- 25 January 2012: The proposal[1] for the GDPR was released.
- 21 October 2013: The European Parliament Committee on Civil Liberties, Justice and Home Affairs (LIBE) vote for whether GDPR should be made or not.
- 15 December 2015: The European Parliament, Council and Commission (Formal Trilogue meeting) discuss about the General Data Protection Regulation. On that day, the GDPR has resulted in a joint proposal.
- 17 December 2015: The European Parliament's LIBE Committee voted for the negotiations between the three parties.
- 8 April 2016: Adoption by the Council of the European Union.[2] The only member state voting against was Austria, which argued that the level of data protection in some respects falls short compared to the 1995 directive.[3][4]
- 14 April 2016: Adoption by the European Parliament.[5]
- 24 May 2016: The General Data Protection Regulation has been created, replacing the Data Protection Directive. This is 20 days after the General Data Protection Regulation has been published by the Official Journal of the European Union.[6]
- 25 May 2018: The General Data Protection Regulation becomes enforced around the world. This has been two years since the regulation has been created.[6]
- July/August 2018: GDPR will be valid in the EEA countries (Iceland, Liechtenstein, and Norway) after the EEA Joint Committee and the three countries have agreed to follow the regulation.[7]
References
- ↑ "Data protection" (PDF). European Commission – European Commission.
- ↑ "Data protection reform: Council adopts position at first reading – Consilium". Europa (web portal).
- ↑ Adoption of the Council's position at first reading, Votewatch.eu
- ↑ Written procedure, 8 April 2016, Council of the European Union
- ↑ "Data protection reform – Parliament approves new rules fit for the digital era – News – European Parliament".
- ↑ 6.0 6.1 "Official Journal L 119/2016". eur-lex.europa.eu. Retrieved 26 May 2018.
{{cite web}}: no-break space character in|title=at position 19 (help) - ↑ Coll, Line; Riisnæs, Rolf. "Implementing the GDPR in Norway". Wikborg|Rein. Retrieved 26 May 2018.