Welcome to gdpr-info.eu. Here you can find the official PDF of the Regulation (EU) 2016/679 (General Data Protection Regulation) in the current version of the OJ L 119, 04.05.2016; cor. OJ L 127, 23.5.2018 as a neatly arranged website. All Articles of the GDPR are linked with
suitable recitals. The European Data Protection Regulation is applicable as of May 25th, 2018 in all member states to harmonize data privacy laws across Europe. If you find the page useful, feel free to support us by sharing the project. Chapter 1General provisions Chapter 2Principles Chapter 3Rights of the data subject Section 1Transparency and modalities Section 2Information and access to personal data Section
3Rectification and erasure Section 4Right to object and automated individual decision-making Section 5Restrictions Chapter 4Controller and processor Section 1General obligationsQuick Access
Chapter 1
–
1 2 3 4
Chapter 2
–
5 6 7 8 9 10 11
Chapter 3
–
12 13 14 15 16 17 18 19 20 21 22 23
Chapter 4
–
24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43
Chapter 5
–
44 45 46 47 48 49 50
Chapter 6
–
51 52 53 54 55 56 57 58 59
Chapter 7
–
60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76
Chapter 8
–
77 78 79 80 81 82 83 84
Chapter 9
–
85 86 87 88 89 90 91
Chapter 10
–
92 93
Chapter 11
–
94 95 96 97 98 99
Here you will find a list of all recitals.
Key Issues
Table of Contents
Section 2Security of personal data
Section 3Data protection impact assessment and prior consultation
Section 4Data protection officer
Section 5Codes of conduct and certification
Chapter 5Transfers of personal data to third countries or international organisations
Chapter 6Independent supervisory authorities
Section 1Independent status
Section 2Competence, tasks and powers
Chapter 7Cooperation and consistency
Section 1Cooperation
Section 2Consistency
Section 3European data protection board
Chapter 8Remedies, liability and penalties
Chapter 9Provisions relating to specific processing situations
Chapter 10Delegated acts and implementing acts
Chapter 11Final provisions
Answer
Regulation (EU) 2016/679 of the European Parliament and of the Council1, the European Union’s ('EU') new General Data Protection Regulation (‘GDPR’), regulates the processing by an individual, a company or an organisation of personal data relating to individuals in the EU.
It doesn’t apply to the processing of personal data of deceased persons or of legal persons.
The rules don’t apply to data processed by an individual for purely personal reasons or for activities carried out in one's home, provided there is no connection to a professional or commercial activity. When an individual uses personal data outside the personal sphere, for socio-cultural or financial activities, for example, then the data protection law has to be respected.
Examples
When the regulation applies
A company with an establishment in the EU provides travel services to customers based in the Baltic countries and in that context processes personal data of natural persons.
When the regulation doesn’t apply
An individual uses their own private address book to invite friends via email to a party that they are organising (household exception).
References
- Articles 1 and 2 and Recitals (1), (2), (14), (18) and (27) of the GDPR
1 Regulation (EU) 2016/679 of the European Parliament and of the Councilof 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) (OJ L 119, 4.5.2016, p. 1).