The penalties for non-compliance are severe. According to GDPR, organizations are required to obtain the consent of the user before collecting, storing and using personal information, and users have absolute control over their personal data no matter where data is sent, processed, or stored. GDPR is fundamentally about protecting and enabling the privacy rights of individuals, which was imposed throughout Europe on May 25, 2018.
Have you ever heard of General Data Protection Regulation (GDPR)? If you haven’t then I recommend you get up to speed, GDPR is the biggest change to privacy and data protection laws since the Data Protect Act.