Chargement...
Chargement...
Copyright © 2026 Anove International B.V.
All product names, logos, and brands are property of their respective owners. Use of these names does not imply affiliation, endorsement, or partnership.
GDPR
The EU General Data Protection Regulation (GDPR), implemented in May 2018, is a comprehensive data privacy law applying to businesses handling personal data of European Union (EU) residents.
The EU General Data Protection Regulation (GDPR), Regulation (EU) 2016/679, is the European Union's comprehensive data protection law. It governs how organisations collect, use, store, and share the personal data of individuals in the EU, and applies directly across all Member States. Its reach is extraterritorial: it binds any organisation, wherever established, that offers goods or services to people in the EU or monitors their behaviour.
GDPR entered into force on 24 May 2016 and has applied since 25 May 2018, replacing the 1995 Data Protection Directive. It is built on principles such as lawfulness, fairness and transparency, purpose limitation, data minimisation, and accountability, and it grants individuals strong rights over their data. Enforcement sits with independent national Data Protection Authorities, coordinated by the European Data Protection Board, and the regime is backed by some of the highest administrative fines in EU law.
Process personal data only on a valid legal basis, and inform individuals clearly about how their data is used.
Enable individuals to exercise rights of access, rectification, erasure, portability, and objection, and respond within statutory timeframes.
Implement appropriate technical and organisational security measures, and notify the supervisory authority of a personal data breach within 72 hours.
Maintain records of processing, appoint a Data Protection Officer where required, and carry out Data Protection Impact Assessments for high-risk processing.
Pour aller plus loin
Anove analyse votre stack au regard de GDPR et de plus de 260 autres cadres en quelques minutes.
Transfer personal data outside the EU only where an adequate level of protection or appropriate safeguards are in place.