The GDPR is a European privacy regulation. It ensures the careful processing of personal data by businesses and organisations. For instance, you must have a good reason to process personal data. And you are not allowed to gather and use more data than is absolutely necessary. These rules apply across the EU/EEA. GDPR stands for General Data Protection Regulation, but in the Netherlands, the GDPR is referred to as the AVG or Algemene Verordening Gegevensbescherming. The GDPR came into force on 25 May 2018 & it consists of a number of rules for the (automatic) processing of personal data. This EU regulation forces you as an entrepreneur to act more carefully and responsibly when dealing with personal data of customers, personnel or others.