The European Parliament has approved the reformed General Data Protection Regulation (the “GDPR”). Given this is a Regulation (rather than a Directive), this legislation will apply automatically in every Member State (without need for additional domestic legislation) when it comes into force on May 25 2018.
Many of the requirements are similar to those set out in Directive 95/46/EC (the “EU Directive”), however there are certain key differences. The table below summarises the key changes.