See the latest updates on Gannon's response to COVID-19.
Effective May 25, 2018, the European Union's General Data
Protection Regulation ("GDPR") imposes data privacy and data
protection requirements on entities that control or process
personal data about of citizens in the 28 member countries of the
European Union ("EU"). GDPR's requirements apply to entities
located outside of the EU who control or process the personal data
of anyone who is in the EU, regardless of EU citizenship.
The GDPR is primarily focused on data privacy for EU data
subjects. It also requires appropriate and reasonable data
GDPR is focused on the personal data of EU data subjects.
Personal data is any information about an identified or
identifiable EU data subject and includes name, address, online
identifiers (including IP addresses), location data (e.g. GPS
coordinates), email address, data revealing racial or ethnic
origin, political opinions, religious or philosophical beliefs,
trade-union membership, genetic data, biometric data, data
concerning health, sex life, and sexual orientation. For more
details, please refer to GDPR website at www.eugdpr.org
The GDPR gives EU data subjects significant new rights over how
their personal data is collected, processed, and transferred. Under
GDPR, EU data subjects have the right to, among other things:
Questions or concerns about our website privacy protection
policy or GDPR can be e-mailed to email@example.com.