The General Data Protection Regulation ("GDPR") is a new data privacy regulation that applies to any event worldwide that collects data from citizens of the European Union.
This regulation should be called the "Data Transparency Act". Event organizers who collect personal data from attendees living in the European Union now have to obtain their expressed and free consent to collect and use their data. EU citizens have the right to access their private information and to request its deletion.
The GDPR must be treated seriously because it impacts almost all event organizers around the world. Penalties for non-compliance are up to 20 million euros or 4% of the overall turnover of the company concerned.
GDPR can be summarized in 5 key principles.
Find out what you need to do to comply with GDPR rules, step by step.
Disclaimer. This document is intended to convey general information only, and should only be used as a starting point in your understanding of issues relating to GDPR. This is not intended as legal advice, nor is it meant to convey legal facts or opinions. The contents of this document should not be relied upon in any particular situation, and the information presented here is not guaranteed to be correct, complete or up-to-date. No action should be taken in reliance on the information found here, and Swapcard disclaims all liability with respect to any acts or omissions based on the contents of this document. You should consult a licensed attorney or regulatory expert to discuss your specific legal, compliance and GDPR-related issues.