What is GDPR - General Data Protection Regulation?
European regulation protecting personal data, applying to any organization processing EU citizens' data
The GDPR (General Data Protection Regulation) is a European regulation that came into effect in May 2018 and has become a global privacy standard. Key provisions:
- Broad scope- Applies to any organization processing EU citizens' data, even if located outside Europe
- Explicit consent- Requirement for clear, active consent for data processing
- Right to be forgotten- Right to request deletion of personal data
- Data portability- Right to receive a copy of data in an accessible format
- Privacy by Design- Obligation to integrate privacy protection in system design
- 72-hour reporting- Obligation to report breaches within 72 hours
- Heavy fines- Up to 4% of annual turnover or €20 million
For Israeli companies working with European customers, GDPR compliance is mandatory.
⚠️ This information is provided for general informational purposes only and does not constitute legal advice. For professional advice tailored to your organization, please consult a privacy protection expert.
Related Terms
Amendment 13 to the Privacy Protection Law
A comprehensive amendment to Israeli Privacy Protection Law strengthening personal data protection
CCPA - California Consumer Privacy Act
American privacy law giving California residents control over their personal information
Privacy by Design
An approach that integrates privacy protection from the design phase of products and systems
Data Breach
A security incident where personal data is exposed, stolen, or accessed by unauthorized parties
Informed Consent
Consent given after receiving full information about how data will be used
Need Help Implementing?
Our experts can help you understand and implement regulatory requirements in your organization