ResourceCenter

All the tools and information you need in one easy-to-find place

EU General Data Protection Regulation

Resource Center / Topic Pages / EU General Data Protection Regulation

NAME

TOPIC PAGE

Navigate Page

News Articles
Research Articles and Reports

Tools and Trackers
Podcasts, Videos, Web Conferences

In December 2016, the EU Parliament and Council agreed upon the EU General Data Protection Regulation, first proposed in 2012, and as of May 25, 2018, it is in effect.

The GDPR offers a framework for data protection with increased obligations for organizations, and its reach is far and wide. It is applicable to any organization — no matter where it resides — that intentionally offers goods or services to the European Union, or that monitors the behavior of individuals within the EU.

Here, you can find the IAPP’s collection of coverage, analysis and resources related to the GDPR.

Related content

Europe Data Protection Digest newsletter
Be in-the-know on EU news from the IAPP by subscribing to the Europe Data Protection Digest newsletter.
Subscribe here

Europe topic page
On this topic page, you can find the IAPP’s collection of coverage, analysis and resources covering Europe.
View here

Hands-On Guide to GDPR Compliance
This IAPP textbook takes best practices for GDPR compliance straight from the field, while diving into big-picture privacy questions.
View here

European Data Protection
In this IAPP textbook CIPP/E program, review the GDPR and related laws, and the origins and development of European data protection.
View here
GDPR Law and History
- The EU General Data Protection Regulation
  This HTML version of the full GDPR is provided by the IAPP and formatted with anchor links to easily link to specific articles and recitals in the law.
- A brief history of the General Data Protection Regulation (1981-2016)

Back to top

News Articles

EU General Data Protection Regulation

View all News Articles ➔

NEWS ARTICLE

The advocate general’s opinion in EDPS v SRB: Changing the GDPR and facilitating European innovation?

NEWS ARTICLE

European commissioner discusses EU-US Data Privacy Framework, potential GDPR reform

NEWS ARTICLE

Liability for nonmaterial damage under the GDPR: Approaches of EU, UK courts

Ghosts in the algorithm: Busting AI hallucinations under the GDPR

NEWS ARTICLE

IAPP DPC 2024: Reynders discusses GDPR enforcement harmonization, adequacy developments

NEWS ARTICLE

EDPB issues draft guidelines on legitimate interest, opinion on processors

NEWS ARTICLE

EDPB opinion on legality of pay-or-consent models in EU GDPR context

NEWS ARTICLE

The AI Act’s debiasing exception to the GDPR

NEWS ARTICLE

Data analytics on online services under GDPR: Legal basis for processing

NEWS ARTICLE

Five years in: Impressions on GDPR’s maturity

NEWS ARTICLE

Key points of the DPC’s GDPR decision on TikTok and children’s data

NEWS ARTICLE

GDPR fine calculation: A look at the EDPB’s new guidelines and the UK’s approach

NEWS ARTICLE

Using sensitive data to prevent AI discrimination: Does the EU GDPR need a new exception?

NEWS ARTICLE

Meta’s EU data transfer case faces Article 65 dispute resolution mechanism

NEWS ARTICLE

Breaking down enforcement of Meta’s legal basis for personalized ads

NEWS ARTICLE

Are EU AI Act sandboxes viable without GDPR waivers for experimentation?

NEWS ARTICLE

Proposed EU AI Act blurs lines between AI developers and data processors under GDPR

NEWS ARTICLE

Record of processing activities — Are you ready for maturity?

NEWS ARTICLE

A look behind the EDPB’s move to enhance enforcement cooperation

NEWS ARTICLE

CJEU ruling on GDPR litigation builds ‘jurisprudence on data protection’

NEWS ARTICLE

Consent as legal basis for EU and UK employment

NEWS ARTICLE

Dodging the one-stop shop

NEWS ARTICLE

Would anyone in their right mind reopen the GDPR? The IAF’s answer is yes.

NEWS ARTICLE

Comparing the role of the DPO under the GDPR and Turkish law

NEWS ARTICLE

3 years in, GDPR highlights privacy in global landscape

NEWS ARTICLE

Federal Constitutional Court: CJEU must clarify whether GDPR provides materiality threshold

NEWS ARTICLE

GDPR representatives in EU and UK after Brexit

NEWS ARTICLE

Encrypt your data to make GDPR and Russian Data Localization Law compatible

NEWS ARTICLE

Privacy pros say GDPR dispute-resolution trigger ‘no surprise’

NEWS ARTICLE

What you must know about ‘third parties’ under GDPR and CCPA

NEWS ARTICLE

Platform helps organizations take deep dives into GDPR, CCPA

NEWS ARTICLE

GDPR and CCPA: A compatibility story

NEWS ARTICLE

How to ‘background check’ under the GDPR

NEWS ARTICLE

Publicly available data under the GDPR: Main considerations

NEWS ARTICLE

Want Europe to have the best AI? Reform the GDPR

NEWS ARTICLE

Privacy professionals begin to look back at year one of the GDPR

NEWS ARTICLE

Global recall: How the GDPR impacts product recalls

NEWS ARTICLE

Recap: EDPB’s first-year review of GDPR

NEWS ARTICLE

Op-ed: Encrypted data may still be personal under GDPR

NEWS ARTICLE

How to draft a GDPR-compliant retention policy

NEWS ARTICLE

How not to write your GDPR-‘compliant’ data protection notice

NEWS ARTICLE

View More

Back to top

Research Articles and Reports

EU General Data Protection Regulation

View all Research Articles and Reports ➔

RESEARCH ARTICLE

Meta’s new digs: A deep dive into practical considerations of consent

RESOURCE ARTICLE

Top 10 operational impacts of India’s DPDPA – Comparative analysis with the EU General Data Protection Regulation and other major data privacy laws

RESEARCH ARTICLE

Ireland DPC’s data transfers decision: Pragmatic punch or knockout blow?

Going back to basics for the EDPB’s year of the DPO

RESOURCE ARTICLE

Practical considerations from EU enforcement: One-stop shop

RESOURCE ARTICLE

Practical considerations from EU enforcement: legal bases and transparency

RESOURCE ARTICLE

Sanctions under EU GDPR and recent data regulations: A case of double jeopardy?

RESEARCH ARTICLE

DPAs on the Ground

WHITE PAPER

GDPR one year later: Looking backward and forward

RESEARCH ARTICLE

Timelines and budgets for GDPR compliance: A meta-analysis

WHITE PAPER

Countdown to GDPR

ARTICLE SERIES

What the GDPR Requires of and Leaves to the Member States

WHITE PAPER

Bridging ISO 27001 to GDPR

WHITE PAPER

Top 10 Operational Responses to the GDPR – Part 6: Transparency and privacy notices

RESEARCH ARTICLE

Top 10 operational responses to the GDPR

ARTICLE SERIES

Getting to GDPR Compliance: Risk Evaluation and Strategies for Mitigation

The General Data Protection Regulation Matchup Series

ARTICLE SERIES

The Risk-Based Approach in the GDPR: Interpretation and Implications

WHITE PAPER

A brief history of the General Data Protection Regulation (1981-2016)

RESOURCE ARTICLE

The Top 10 Operational Impacts of the EU’s General Data Protection Regulation

View More

Back to top

Tools and Trackers

EU General Data Protection Regulation

View all Tools and Trackers ➔

INFOGRAPHIC

GDPR at Five

INFOGRAPHIC

Requirements of the GDPR-mandated DPO

Refresher: The GDPR’s Six Legal Bases for Data Processing

UK DPDI Bill: Comparative analysis with the EU GDPR and ePrivacy framework

TOOL

Comparison: Indian Personal Data Protection Bill 2019 vs. GDPR

What triggers a DPIA under the GDPR?

INFOGRAPHIC

GDPR Enforcement Priorities

INFOGRAPHIC

GDPR Awareness Guide

INFOGRAPHIC

View More

Back to top

Podcasts, Videos, Web Conferences

EU General Data Protection Regulation

View all: Podcasts, Videos, Web Conferences

Can Generative AI Survive the GDPR? (AI Governance Global, an IAPP event 2023)

Reforming the GDPR in a Global Context (IAPP Global Privacy Summit 2023)

Keynote Panel Discussion on GDPR (IAPP Global Privacy Summit 2023)

#MeToo vs. GDPR: Investigating Sexual Misconduct by EU Employees

WEB CONFERENCE

View More

Back to top

Back to Top

Back to top