Direct Tax
Consulting
ESG Advisory
Indirect Tax
Growth Advisory
Internal Audit
BFSI Audit
Industry Audit
Valuation
RBI Services
SEBI Services
IRDA Registration
AML Advisory
IBC Services
Recovery of Shares
NBFC Compliance
IRDA Compliance
Finance & Accounts
Payroll Compliance Services
HR Outsourcing
LPO
Fractional CFO
General Legal
Corporate Law
Debt Recovery
Select Your Location
The General Data Protection Regulation (GDPR) is a significant piece of legislation in the European Union (EU) that was designed to enhance and unify data protection for all individuals within the EU. It also addresses the export of personal data outside the EU and EEA areas. GDPR came into effect on May 25, 2018, and has had a profound impact on how organizations around the world collect, store, and handle personal data.
GDPR was introduced to replace the Data Protection Directive of 1995. It is designed to harmonize data privacy laws across Europe, to protect and empower all EU citizens’ data privacy, and to reshape the way organizations across the region approach data privacy. The regulation contains provisions and requirements related to the processing of personally identifiable information of individuals (referred to as “data subjects” in GDPR) residing in the EU.
The GDPR is based on several key principles that dictate how personal data should be handled. These principles include:
GDPR grants several important rights to individuals regarding their personal data. These rights include:
The impact of GDPR has been far-reaching, extending beyond the boundaries of the European Union. Organizations around the world that handle the data of EU citizens have had to comply with the regulation, making significant changes to their data handling practices. This includes:
GDPR compliance is mandatory for all organizations that process the personal data of individuals residing in the EU, regardless of the organization’s location. Non-compliance can result in significant penalties, including fines of up to 4% of annual global turnover or €20 million (whichever is greater).
GDPR represents a significant step in the protection of personal data and the rights of individuals. It sets a new standard for data privacy and has become a model for many countries and regions around the world in drafting their data protection laws.
Experiencing the loss of a loved one is one of the deepest emotional hardships a person can fac...
On January 16, 2025, the Reserve Bank of India (RBI) released the list of Non-Banking Financial...
Over the decades, the Oil and Natural Gas Corporation (ONGC) has been a key pillar in the portf...
The Reserve Bank of India, on April 11, 2025, posted a Press Release No. 2025-2026/96 on their...
Hong Kong is widely recognized as a leading global business hub, known for its free-market econ...