General Data Protection Regulation live on 25 May
The European Union’s (EU) General Data Protection Regulation (GDPR) came into effect on 25 May 2018 to harmonise data privacy laws across Europe. It generally applies to data processing activities where an establishment is in the EU, or if outside the EU, it offers goods or services or monitors the behaviour of individuals in the EU. Therefore the GDPR has extra-territorial reach and could affect Australian business and government agencies.
Agencies and businesses should carefully assess whether the GDPR applies to their activities and seek their own legal advice accordingly.