EU General Data Protection Regulation

 

Resource Center / Topic Pages / EU General Data Protection Regulation

Image

NAME

TOPIC PAGE

Navigate Page

In December 2016, the EU Parliament and Council agreed upon the EU General Data Protection Regulation, first proposed in 2012, and as of May 25, 2018, it is in effect.

The GDPR offers a framework for data protection with increased obligations for organizations, and its reach is far and wide. It is applicable to any organization — no matter where it resides — that intentionally offers goods or services to the European Union, or that monitors the behavior of individuals within the EU.

Here, you can find the IAPP’s collection of coverage, analysis and resources related to the GDPR.


News Articles

View all News Articles

Ghosts in the algorithm: Busting AI hallucinations under the GDPR


IAPP DPC 2024: Reynders discusses GDPR enforcement harmonization, adequacy developments


EDPB issues draft guidelines on legitimate interest, opinion on processors


EDPB opinion on legality of pay-or-consent models in EU GDPR context


The AI Act’s debiasing exception to the GDPR


Data analytics on online services under GDPR: Legal basis for processing


Five years in: Impressions on GDPR’s maturity


Key points of the DPC’s GDPR decision on TikTok and children’s data


GDPR fine calculation: A look at the EDPB’s new guidelines and the UK’s approach


Using sensitive data to prevent AI discrimination: Does the EU GDPR need a new exception?


Meta’s EU data transfer case faces Article 65 dispute resolution mechanism


Breaking down enforcement of Meta’s legal basis for personalized ads


Are EU AI Act sandboxes viable without GDPR waivers for experimentation?


Proposed EU AI Act blurs lines between AI developers and data processors under GDPR


Record of processing activities — Are you ready for maturity?


A look behind the EDPB’s move to enhance enforcement cooperation


CJEU ruling on GDPR litigation builds ‘jurisprudence on data protection’


Consent as legal basis for EU and UK employment


Dodging the one-stop shop


Would anyone in their right mind reopen the GDPR? The IAF’s answer is yes.


Comparing the role of the DPO under the GDPR and Turkish law


3 years in, GDPR highlights privacy in global landscape


Federal Constitutional Court: CJEU must clarify whether GDPR provides materiality threshold


GDPR representatives in EU and UK after Brexit


Encrypt your data to make GDPR and Russian Data Localization Law compatible


Privacy pros say GDPR dispute-resolution trigger ‘no surprise’


What you must know about ‘third parties’ under GDPR and CCPA


Platform helps organizations take deep dives into GDPR, CCPA


GDPR and CCPA: A compatibility story


How to ‘background check’ under the GDPR


Publicly available data under the GDPR: Main considerations


Want Europe to have the best AI? Reform the GDPR


Privacy professionals begin to look back at year one of the GDPR


Global recall: How the GDPR impacts product recalls


Recap: EDPB’s first-year review of GDPR


Op-ed: Encrypted data may still be personal under GDPR


How to draft a GDPR-compliant retention policy


How not to write your GDPR-‘compliant’ data protection notice


View More


Research Articles and Reports

View all Research Articles and Reports

View More


Back to Top