Companies affected by the regulation are all those dealing with personal data collection of some sort, e.g. online stores, financial, telecom, IT outsourcing, marketing research companies etc.

Some of the provisions of the GDPR:

  • data protection representative willing to interact with the regulator;
  • the subject of personal data may withdraw their consent - for each separate use of data there must be a separate agreement;
  • consent of minors must be supported by consent of parents;

To read more on the subject, please see the article on our Ukrainian website: