The GDPR Compliance, also known as the General Data Protection Regulation 2016/679, is a legal framework for consumer confidence that establishes rules for the gathering and use of personal data from residents of the European Union (EU) and the European Economic Area (EEA).

The records need to show what, where, how, and why data is processed. This new EU Regulation significantly enhances the protection of the personal data of EU citizens and increases the accountability of organisations who collect or process personal data of EU citizens. It also builts many requirements for data privacy and security, and adds harsher penalties for violations.

If any organization suffers a breach of information assets related to EU citizens, the entity would be charged deftly and would need to notify the local data protection authority immediately.