This subsection is dedicated to The General Data Protection Regulation, or General Data Protection Regulation (GDPR). GDPR is an EU regulation containing provisions on the protection of individuals with regard to the processing of personal data and provisions on the free flow of personal data. GDPR is designed to better control personal data and is an element of modernization and unification of regulations throughout the EU.
The regulation is based on seven main principles of personal data processing, which are the starting point for specific provisions, i.e. the principle of fairness, lawfulness and transparency, purpose limitation, data minimization, correctness, storage restrictions, integrity and confidentiality as well as the principle of accountability.