General Data Protection Regulation (GDPR) Regulation 2016/679 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data

At the EU level, the 2016/679 GDPR sets out the rules on how personal data relating to individuals in the EU must be processed by individuals, businesses or other organizations. Summary: This regulation focuses on the protection, privacy, and security of personal data. It emphasizes the need for organizations to implement appropriate technical and organizational measures to ensure the security of the personal data they process. These measures are expected to address the risks associated with the processing of personal data and protect against unauthorized access, accidental loss, unauthorized destruction, or alteration of personal data. The GDPR encourages organizations to consider the state of the art when implementing security measures.

Info

• The regulation is publicly available here: https://eur-lex.europa.eu/eli/reg/2016/679/oj/eng
• This page was last updated May 27th 2025

---

Tags: data protection • privacy