The General Data Protection Regulation (GDPR) is a comprehensive data privacy and protection regulation implemented by the European Union (EU) on May 25, 2018. It is designed to strengthen and unify data protection laws for individuals within the EU and the European Economic Area (EEA), as well as regulate the transfer of personal data outside of these regions.

GDPR aims to give individuals more control over their personal data and how it is collected, processed, and stored by organizations. It has a global impact because it applies to any organization that processes the personal data of individuals in the EU and EEA, regardless of where the organization is located.