2. After Two Years Of Waiting, GDPR Enforcement Finally Takes Effect
Citizens and residents of the European Union obtained greater control over how their personal data is being used when the EU's General Data Protection Regulation (GDPR) rules started being enforced in late May.
The new GDPR requirements are considered to be the toughest in the world, with violators subject to fines of up to 4 percent of global revenue or 20 million euros – whichever is higher – for non-compliance. EU citizens and residents can also ask technology firms, banks, retailers or other businesses what information they hold about them, and then request for it to be deleted.
Many technology companies are rolling out GDPR-related changes beyond Europe since it's hard to determine the citizenship of people logging in to use services, extending both clearer explanations as well as new protections to U.S. citizens. However, citizens outside the European Union don't have any recourse if they still have a problem with a company's practices.