Ehsan Elahi
Nawaz Zai
Faisal Ghaffari
Dr Muhammad Atif Queshi
Ahmad Abdulwakeel
Ahmad Abdulwakeel
Dr Aqeel Kazmi
Nawaz Zai
Mustafa Shuja
Dr Muhammad Atif Queshi
Tauqeer Khan
Zeeshan Khan
Ahmad Abdulwakeel
The General Data Protection Regulation is an EU law that came into effect on May 25, 2018 applying across all EU member states including Ireland in order to protect and safeguard the privacy rights of individuals.
Who does GDPR apply to?
In essence, it is difficult to think of a business that GDPR does not apply to because in order to do business most organisations need to collect personal data. GDPR applies to any individual or organisation that processes personal data so if you have a ‘Contact Us’ page on your website for individuals to submit their details, then you are collecting (and therefore processing) their personal data.
The GDPR does not just apply to large companies but also individuals, SMEs, not-for-profit organisation and community groups.
There is little difference in the application of the GDPR whether you are a large company, a SME or an individual. Very few exemptions under the GDPR apply to SMEs, one example would be that you may not be required to keep records of processing activities if you have 250 or less employees (depending on the type of personal data that you process). Apart from that, there are few differences in the application of the regulations based on the size of an organisation.
