Also known as GDPR.

Concerned with the growth of the internet and the inadvertent or otherwise exposure of personal information to potential bad actors, the European Union promulgated the General Data Protection Regulation in 2016. The regulation is part of European Union privacy law and human rights laws and must be complied with by any companies doing business with EU nations. It is designed to give people greater control over their personal information while simplifying regulatory compliance for international business.