Such as restaurants, hotels, travel agencies, taxis, e-commerce shopping platforms, etc., with customer credit card information and membership information
Employees, suppliers, third parties, partners, you may have their insurance information, salary records, contact information, etc.
Volunteers, members, sponsors, donors, consultants of the organization... are EU citizens. If you have their contact information, tax information, etc., they are subject to the GDPR
The fine is the total annual global turnover of 4%, up to 20 million euros
For example, if you set up a branch or sales office in the European Union and hire local employees as employees, you need to take measures to protect employees' personal data in accordance with the GDPR. Many companies have developed personal information protection management measures in accordance with the EU Data Protection Directive enacted in 1995. Therefore, prior to the implementation of GDPR in 2018, stricter correspondence education is necessary.
In addition, even if you do not have an overseas base, EU residents will enter the name, phone number, credit card number, etc. when purchasing products from the Chinese and Taiwanese websites, which must also meet the GDPR.
The GDPR has caused a lot of discussion because of the data that will be used in the digital advertising ecosystem, such as cookies, IP, device identification codes (including Google Advertising ID (AAID) for Android, advertising ID for iOS devices (IDFA), Device Fingerprint is counted), geographic location (GPS coordinates, or geographic area known by IP reverse inference), etc. are all classified as personal privacy data of EU citizens. Therefore, in order to meet GDPR regulations, the website owner must inform and seek the consent of the website visitors.
GDPR is known as the most stringent personal privacy information protection law in history, which means that the EU will fully open the era of personal privacy protection in legal form.