personopplysningsforordning

The personopplysningsforordning, commonly known as GDPR (General Data Protection Regulation), is a regulation in EU law on data protection and privacy in the European Union and the European Economic Area. It also addresses the transfer of personal data outside the EU and EEA areas. The primary purpose of GDPR is to give individuals control over their personal data and to simplify the regulatory environment for international business by unifying data privacy within the EU.

GDPR applies to any organization, regardless of where it is located, that processes the personal data of

Key principles under GDPR include lawful processing, fairness and transparency, purpose limitation, data minimization, accuracy, storage