The General Data Protection Regulation (GDPR) is a new comprehensive data law in the European Union (“EU”) which updates existing data protection laws to strengthen the protection of personal data for individuals who reside in the EU. The GDPR aims to increase transparency for how personal data is used and to provide EU residents (“data subjects”) with more control over their data. This law went into effect on 25 May 2018.