By Sara Gerke
The EU’s General Data Protection Regulation, which came into force two years ago but became directly applicable in all EU Member States only last week, aims to establish an equal level of protection for the rights and freedoms of natural persons with regard to the processing of personal data in all EU Member States.
According to its territorial scope, the GDPR can also impact US companies that process personal data of data subjects who are in the EU. For example, this is the case for newspapers and affiliated websites, where the processing activities are related to the offering of services or goods, irrespective of whether payment is required. Some papers decided to simply block users in the EU, rather than abide by the GDPR’s provisions.