The General Data Protection Regulation ("GDPR") is a new data privacy regulation that applies to any event worldwide that collects data from citizens of the European Union.
This regulation should be called the "Data Transparency Act". Event organizers who collect personal data from attendees living in the European Union now have to obtain their expressed and free consent to collect and use their data. EU citizens have the right to access their private information and to request its deletion.
The GDPR must be treated seriously because it impacts almost all event organizers around the world. Penalties for non-compliance are up to 20 million euros or 4% of the overall turnover of the company concerned.
The GDPR consists of 5 key principles
For more information please look over these links: