The EU’s General Data Protection Regulation (GDPR) was adopted by the European Parliament on 14 April 2016. The final step for formal adoption was publication of the GDPR in the Official Journal of the EU on 4 May which means that the starting date for the two-year implementation period will be 24 May 2016. Companies and data protection authorities (DPAs) will then have just 24 months from this date to implement the new requirements under the GDPR.
This article was originally published in Privacy Laws & Business UK Report, May 2016, www.privacylaws.com.
