The General Data Protection Regulation (GDPR) was implemented to give European citizens more control over their private information. It aims to simplify the handling of personal data in businesses so both citizens and organisations under the European Union can benefit from the digital economy.