The 'GDPR' stands for General Data Protection Regulation. It means data collected by companies based in the European Economic Area will be subject to new data protection regulations from 25 May 2018. The GDPR introduces changes to the way we manage your personal information as well as giving you more choice about your privacy preferences.