Individual’s Rights in the EU General Data Protection Regulation (GDPR)

The European Union’s updated data protection legislation comes into effect in Europe on May 25, 2018. It gives individuals new rights to better control their personal information and strengthens some of the rights that already exist. Enforcement and redress mechanisms have also been strengthened to ensure that these rights are respected. And – importantly – the definition of personal data is wider in the GDPR than in the current EU legislation, and now includes online identifiers, such as an IP address. Read the summary of the eight rights here.

The right

  1. to information
  2. to access
  3. to rectify
  4. to delete (or “to be forgotten”)
  5. to restrict processing
  6. to data portability
  7. to object
  8. to avoid automated decision making and profiling.