Businesses in travel and beyond face a deadline of May 25, 2018, for compliance with the European Union's General Data Protection Regulation. GDPR changes several key areas of data privacy law applying to European citizens.
Among the major changes that the regulation makes relative to the current data protection regime, GDPR "applies to all companies processing the personal data of data subjects residing in the Union, regardless of the company’s location"; organizations in breach of the law face "maximum" fines for "the most serious infringements" of 4 percent . . .