The European Union (EU) General Data Protection Regulation (GDPR) takes effect on Friday, May 25, 2018. Regardless of where you are in the world, the GDPR applies to your business or organization if you collect information from EU members. The EU member states are:
- Austria
- Belgium
- Bulgaria
- Croatia
- Cyprus
- Czech Republic
- Denmark
- Estonia
- Finland
- France
- Germany
- Greece
- Hungary
- Ireland
- Italy
- Lativa
- Lithuania
- Luxembourg
- Malta
- Netherlands
- Poland
- Portugal
- Romania
- Slovakia
- Slovenia
- Spain
- Sweden
- United Kingdom
Members living in these EU states must give express consent to receive communications from your business organization. Data controllers must be able to prove consent (opt-in) and consent may be withdrawn. The following links will help you learn more about the GDPR and what it may mean for your business or organization:
https://en.wikipedia.org/wiki/General_Data_Protection_Regulation
https://www.compliancejunction.com/gdpr-compliance/
One interesting note concerns how Brexit will affect the GDPR in the United Kingdom. The United Kingdom (UK) will exit the EU March 29, 2019. The GDPR will apply to the UK until such time the UK exits the EU. Once the UK is no longer a member of the EU, it still must follow the GDPR as it relates to other EU member states. Also, the UK intends to implement the GDPR into UK law after Brexit has taken place.
