Skip to main content

One year of GDPR:

A new age for data protection and privacy enforcement


144,376 complaints

have been raised

89,271 data breaches

have been reported

67% of EU citizens

have heard of the GDPR

Data from European Commission (May 2019)

The EU General Data Protection Regulation (GDPR) primarily applies to EU-based companies, but also to non-EU businesses, NGOs and other institutions from all over the globe. GDPR enforcement simply requires that an entity collects personal information from individuals in the EU and that its activities somehow aim at the European market.

The GDPR affects almost any industry ...


Communities

Online communities come along with processing of registration and communication data.

Education

MOOCs or universities offering international exchange programs process enrollment and performance data.

Entertainment

Content-focused businesses make use of behavioral data, such as settings and preferences.

Healthcare

Telemedicine and health-related online services require sensitive information on the customer's condition.

Manufacturing

Manufacturers often have data on EU sales representatives or maintain databases for CRM of EU customers.

Online marketers

Online marketers collect data to target customers for own purposes or on behalf of their clients.

Real Estate

Owning EU-based real estate requires contact with and data on potential buyers, tenants or investors.

Religion

Religious communities may collect sensitive data on the beliefs of their members and supporters in the EU.

Science

Laboratories and sponsors of clinical trials process health information on study participants.

Sports

Websites providing news and tournament statistics collect information on athletes and registered users.

System Catering

Many restaurants offer their guests to sign-up for coupons, special offers and other marketing.

Technology

SaaS and cloud service providers as well as software and tech companies collect personal data.

Tourism

Tour operators and booking platforms process information on transactions and often location data.

Transport

Many public transport operators collect information by eletronic booking systems such as ticket apps.

Webshop

Webshops delivering goods to EU customers retain order histories, addresses and payment information.