At the heart of it, the European Union’s new data privacy legislation, the General Data Protection Regulation (“GDPR”), restricts what the company’s that hold or manipulate personal data of individuals can do with it, and what type of consent is required for what acts. Like all regulations, there are a number of defined terms, which must be understood to grasp the coverage of the GDPR. In summary it covers a lot of activities that companies may not have thought would be regulated. Read more