The European Union (EU) will be enacting its General Data Protection Regulation (GDPR) on May 25, 2018. The GDPR provides stronger data protection and digital privacy laws for EU citizens. It should give individuals more of a say in how their data is used. The law also addresses the export of personal data outside the EU and EEA.
The GDPR requires that organizations collecting personal information disclose that collection, and clearly identify what that information will be used for.