The European General Data Protection Regulation (GDPR) entered into force on 25 May 2018. It updated and enhanced the Data protection Legislation, including the beneath 6 principles: 

1. Lawfulness, fairness and transparency

2. Purpose limitation

3. Data minimization

4. Accuracy

5. Storage limitation

6. Integrity and confidentiality (security)

Compliance with these principles is crucial for following a good data protection policies and it is also key for the compliance with the detailed provisions of the GDPR. Non-compliance to the regulation can result in big penalties. In cases of serious infringement, fines up to €20 million or 4% of worldwide turnover (whichever is higher) can be given, and organizsations can be banned from processing personal data.