Understanding GDPR

The GDPR is a compilation of EU laws that have come into effect on May 25th 2018. Those regulate the protection of natural persons with regard to the processing of personal data and on the free movement of such data. Data protection is about ensuring people can trust you to use their data fairly and responsibly. If you collect information about individuals for any reason other than your own personal, family or household purposes, you need to comply with the applicable regulation.

The purpose of the GDPR is to provide a set of standardised data protection laws across all the EU Estate Members. This should make it easier for EU citizens to understand how their data is being processed and also raise any complaints. It takes a flexible, risk-based approach which puts the onus on companies and business to think about and justify how personal details are managed and for what purposes.

You can get further information by visiting the official website of the EU:


And get the latest updates from the Information Commissioners Office in the UK:


and the Supervisory Authority in Spain called “Agencia Española de Protección de Datos”:



Do not hesitate to contact PENA FRAGA LAW FIRM for personal advice tailored to your case by clicking on the GET IN TOUCH button below.