GDPR (General Data Protection Regulation) is the abbreviation for the General Data Protection Regulation, which has been in effect across the European Union since May 25, 2018. Its main goal is to protect individuals’ privacy and give them greater control over how their personal data is handled.

The regulation defines how companies and organizations may collect, process, and store personal data—and how they must protect it. It emphasizes transparency, accountability, and respect for each individual's rights.