The General Data Protection Regulation is being brought in to strengthen and unify data protection for all individuals within the EU. It will supersede the Data Protection Act 1998 and other data protection regulations. The legislation will come into effect on May 25, 2018, regardless of Brexit. It has customer privacy at its heart and is widely regarded as much more robust than existing rules. Organisations will have to keep records of all personal data, prove consent was given, show what it is being used for, how it is being protected, and how long it is kept for. Failure to comply could lead to a fine, which would be based on the turnover of the business. Get the full story at Travel Weekly Read also "GDPR: How to create best practice privacy notices"