Definition: A legal framework established by the European Union (EU) that governs the processing of personal data of EU citizens. The GDPR aims to enhance and unify data protection for all individuals within the EU and provides citizens with more control over their personal data.
Key Features:
Rights of the Data Subjects: Including the right to access, rectify, and erase.
Data Transparency: Businesses must disclose how they collect and use data.
Data Retention: Data can only be stored for as long as it is necessary.
Penalties: High fines can be imposed for non-compliance.
Common Areas of Application:
Online Services: Websites, apps, and other online platforms.
Marketing: Collection and utilization of customer data.
Healthcare: Processing of patient data.