The General Data Protection Regulation (GDPR) is a set of rules to ensure a better protection of European citizens’ data. It is a revision of European legislation from 1995, the Data Protection Directive. The GDPR’s goal is twofold: on the one hand it aims to safeguard European citizens’ privacy, on the other hand it wants to give citizens more rights as to what happens with their personal data. GDPR came into force on 25 May 2018.