Who exactly is affected by the new GDPR regulations?

The GDPR has sweeping implications for all citizens of the EU as well as any businesses operating within the European Union regardless of where their physical location is. If businesses hope to offer services or goods citizens of the EU, they will be susceptible to the fines imposed by the GDPR. Furthermore, any business that retains personal data of EU citizens can be held accountable under the GDPR.

The GDPR covers any information that can be used to determine your identity or categorized as personal details. When it comes to data about children under the age of 16 – then parental consent will be required also.

What sort of data falls under the General Data Protections Regulation?

  • Photo of client / person
  • Name
  • Email address
  • Social media posts
  • Personal medical information
  • Bank detail
  • IP addresses

The regulation stipulates the entities that will be impacted by the GDPR. The wording specifically includes data controllers and data processors. This means that any information that is stored in another physical location or in the “cloud” is still subject to penalties. No matter who has control of how your information will be used and who actually uses it, fines can still be imposed for misuse if it concerns the data of EU citizens.

Click here for a more detailed guide to GDPR

Click on the image above for to see the EU Commission infographic on General Data Protection Regulation