Six years have passed since the General Data Protection Regulation (GDPR) entered into force. With its numerous data protection obligations and the threat of high fines, companies had to change their approach to data protection. It has been an ongoing challenge for companies to keep up with the constant changes deriving from a plethora of new decisions by courts and supervisory authorities.

The 2nd Edition of this book provides a practical overview of the requirements of the GDPR. Examples, tables, and checklists showcase the requirements of the GDPR, whilst also giving practical tips to tackle the regulatory challenges. The handbook examines the GDPR’s scope of application, the organisational and material requirements of the GDPR, the rights of data subjects, the role of the supervisory authorities, and enforcement and fines.

The book has been completely revised for the second edition and takes extensive account of new data protection case law and regulatory guidelines.