Wikipedia defines GDPR as “The General Data Protection Regulation (GDPR) (EU) 2016/679 is a regulation in EU law on data protection and privacy for all individuals within the European Union. It addresses the export of personal data outside the EU. The GDPR aims primarily to give control back to citizens and residents over their personal data and to simplify the regulatory environment for international business by unifying the regulation within the EU. When the GDPR takes effect, it will replace the 1995 Data Protection Directive (Directive 95/46/EC).”
GDPR becomes enforceable from 25th May 2018.
Many organisations traditionally have retained data for long periods in backup form as a cheap alternate to using content based archives. Under the new GDPR, fines may be levied if Personally Identifiable Information (PII) cannot be tracked and controlled effectively.
GDPR effects Data Protection in many ways: