The GDPR, or General Data Protection Regulation, protects the personal data of EU citizens. It applies to any company that touches data (including names, email addresses or even IP addresses) of EU citizens, even if the company is outside the EU. Chances are, it applies to you.
The penalties for non-compliance can be astronomical, so it’s a good idea to make sure you are aware of the requirements and that your company’s policies and practices are consistent with the regulation.
Use this checklist to ensure you are covering your bases for GDPR compliance.