As the General Data Protection Regulation (GDPR) gets closer, we’ve received questions from customers about what GDPR is and what it means for them. To answer some of those questions and make the implications of GDPR clear, we’ve outlined what exactly GDPR is below.

The European Parliament and Council passed GDPR in April 2016 in order to protect European Union citizens’ personal data. The regulation will take effect on May 25, 2018 and will replace legacy regulations, as well as introduce several new laws and non-compliance penalties.


One of the biggest differences between GDPR and older data protection laws is the scope. Any company located in the EU collecting or processing data must comply, as must companies collecting or processing data belonging to EU citizens (regardless of where the company is located).

UK citizens will still have the same data protection rights post-Brexit, meaning, UK businesses should prepare to fully comply with GDPR by May 25th.

Read more about what GDPR is here.

Stay up to date on Planday's full GDPR efforts

Subscribe to our GDPR updates mailing list


Recommended for you

Planday’s commitment to security and data protection for GDPR

Cristina Niculescu

Cristina Niculescu

2 min read