Skip to main content

Two years of GDPR

A new age of global privacy compliance


complaints raised


data breaches reported

67% of EU citizens

have heard of the GDPR

Data from European Data Protection Board (November 2019)
/ European Commission (May 2019)

The GDPR affects almost any industry ...


Online communities come along with processing of registration and communication data.


MOOCs or universities offering international exchange programs process enrollment and performance data.


Content-focused businesses make use of behavioral data, such as settings and preferences.


Telemedicine and health-related online services require sensitive information on the customer's condition.


Manufacturers often have data on EU sales representatives or maintain databases for CRM of EU customers.

Online marketers

Online marketers collect data to target customers for own purposes or on behalf of their clients.

Real Estate

Owning EU-based real estate requires contact with and data on potential buyers, tenants or investors.


Religious communities may collect sensitive data on the beliefs of their members and supporters in the EU.


Laboratories and sponsors of clinical trials process health information on study participants.


Websites providing news and tournament statistics collect information on athletes and registered users.

System Catering

Many restaurants offer their guests to sign-up for coupons, special offers and other marketing.


SaaS and cloud service providers as well as software and tech companies collect personal data.


Tour operators and booking platforms process information on transactions and often location data.


Many public transport operators collect information by eletronic booking systems such as ticket apps.


Webshops delivering goods to EU customers retain order histories, addresses and payment information.

Global impact of the EU GDPR

The GDPR affects companies from any part of the world which collect personal information in the EU - may it be in human resources, customer relations or user data. Meeting the compliance benchmarks has become a valuable asset in the privacy-sensitive EU market.