Direct Tax
Consulting
ESG Advisory
Indirect Tax
Growth Advisory
Internal Audit
BFSI Audit
Industry Audit
Valuation
RBI Services
SEBI Services
IRDA Registration
AML Advisory
IBC Services
Recovery of Shares
NBFC Compliance
IRDA Compliance
Finance & Accounts
Payroll Compliance Services
HR Outsourcing
LPO
Fractional CFO
General Legal
Corporate Law
Debt Recovery
Select Your Location
The General Data Protection Regulation (GDPR) is a significant piece of legislation in the European Union (EU) that was designed to enhance and unify data protection for all individuals within the EU. It also addresses the export of personal data outside the EU and EEA areas. GDPR came into effect on May 25, 2018, and has had a profound impact on how organizations around the world collect, store, and handle personal data.
GDPR was introduced to replace the Data Protection Directive of 1995. It is designed to harmonize data privacy laws across Europe, to protect and empower all EU citizens’ data privacy, and to reshape the way organizations across the region approach data privacy. The regulation contains provisions and requirements related to the processing of personally identifiable information of individuals (referred to as “data subjects” in GDPR) residing in the EU.
The GDPR is based on several key principles that dictate how personal data should be handled. These principles include:
GDPR grants several important rights to individuals regarding their personal data. These rights include:
The impact of GDPR has been far-reaching, extending beyond the boundaries of the European Union. Organizations around the world that handle the data of EU citizens have had to comply with the regulation, making significant changes to their data handling practices. This includes:
GDPR compliance is mandatory for all organizations that process the personal data of individuals residing in the EU, regardless of the organization’s location. Non-compliance can result in significant penalties, including fines of up to 4% of annual global turnover or €20 million (whichever is greater).
GDPR represents a significant step in the protection of personal data and the rights of individuals. It sets a new standard for data privacy and has become a model for many countries and regions around the world in drafting their data protection laws.
India and the United Arab Emirates (UAE) have a long and expanding trade relationship. Trade fl...
The International Financial Services Centres Regulatory Authority (IFSCA) is the country's firs...
Reserve Bank of India (Co-Lending Arrangements) Directions, 2025, issued by the Reserve Bank of...
The Alternative Investment Fund (AIF) market in India is expanding, and there is a need to intr...
The startup ecosystem in India is very energetic and dynamic. Whether it's disruptive technolog...