Skip to main content

275,557

privacy complaints raised

158,606

data breaches reported

67% of EU citizens are

aware of their data subject rights


The GDPR has a broad extraterritorial scope and causes legal risks for companies that maintain business relations with the EU. Non-compliance may lead to fines of up to EUR 20,000,000 or 4% of the company's annual group turnover, whichever is higher. From a sales perspective, meeting the GDPR benchmarks has become an essential asset in the privacy-sensitive EU market.
The GDPR applies to processes that require the collection of personal information. As you can hardly imagine a modern process without using data, it imposes compliance requirements on a broad range of business operations: online services, customer relations, advertisement, (social) media, human resources, payment transactions, apps, SaaS, geolocation tracking, user metrics analysis, and many more.

Industries


Communities

Online communities come along with processing of registration and communication data.

Education

MOOCs or universities offering international exchange programs process enrollment and performance data.

Entertainment

Content-focused businesses make use of behavioral data, such as settings and preferences.

Finance

Banks and payment service providers process financial information of their customers.

Food

Restaurants and system caterers offer their guests to sign-up for special offers and other marketing.

Geolocation

Geofencing through mobile apps and other location tracking features require to collect personal data.

Healthcare

Telemedicine and health-related online services require sensitive information on the customer's condition.

Manufacturing

Manufacturers often have data on EU sales representatives or maintain databases for CRM of EU customers.

NGOs

NGOs maintain databases of PR contacts and potential donors to fuel their fundraising campaigns.

Online Marketing

Online marketers collect data to target customers for own purposes or on behalf of their clients.

Real Estate

Owning EU-based real estate requires contact with and data on potential buyers, tenants or investors.

Religion

Religious communities may collect sensitive data on the beliefs of their members and supporters in the EU.

Retail

Webshops delivering goods to EU customers retain order histories, addresses and payment information.

Science

Laboratories and sponsors of clinical trials process health information on study participants.

Sports

Websites providing news and tournament statistics collect information on athletes and registered users.

Technology

SaaS and cloud service providers as well as software and tech companies collect personal data.

Tourism

Tour operators and booking platforms process information on transactions and often location data.

Transport

Many public transport operators collect information by eletronic booking systems such as ticket apps.