RGPD 🟩 Regulation
The General Data Protection Regulation (GDPR) (Regulation 2016/679) is a European law that establishes a harmonised legal framework for the protection of the personal data of citizens of the European Union (EU) and the European Economic Area (EEA).
Adopted on 27 April 2016 and coming into force on 25 May 2018, the RGPD applies directly in all Member States, without the need for a transposition law. In France, the Commission Nationale de l'Informatique et des Libertés (CNIL) oversees its application and supports players in achieving compliance. In Germany, it is the BfDI that oversees its application, and in Spain the AEPD.