The purpose of the GDPR (General Data Protection Regulation) is to protect all EU citizens from privacy and data breaches in an increasingly data-driven world and immensely different from the past when the 1995 directive was established. The GDPR was approved and adopted by the European Parliament in April 2016. The regulation will come into force after a two-year transition period and, unlike a directive, It does not require any legislation allowing government approval and will come into force in May. 2018. The GDPR not only applies to organizations located within the EU, but will also apply to organizations located outside the EU if they offer goods or services to, or monitor the behavior of, EU data centers. It applies to all companies that process and hold the personal data of data subjects existing in the European Union, regardless of the company's headquarters. The regulation applies if the data controller (an organization that collects data from EU residents) or the data processor (an organization that processes data on behalf of the data controller, for example cloud service providers) or the data subject (person) is based in the EU. Furthermore, the regulation also applies to organizations based outside the European Union if they collect or process personal data of EU residents. According to the European Commission "personal data is any information relating to an individual, whether relating to his private, professional or public life. It can be anything from a name, a home address, a photo, an e-mail address emails, bank details details, posts on social networking websites, medical information or a computer's IP address”. Get a tailor-made essay on “Why violent video games should not be banned”? Get an original essay Deviations that GDPR will bring. The directive applies not only to entities working in the EU, but also to entities processing the data of any EU resident, regardless of where the data is handled, if it is data of an EU citizen treaties, the entity is now subject to the GDPR. Penalties are also much more severe under the GDPR and can amount to twenty million euros or 4% of an entity's annual turnover, whichever is higher. Furthermore, like previous regulations, all data breaches affecting the rights and freedoms of people resident in the EU must be reported within 72 hours. The overarching committee, the EU Data Protection Board, EDP, oversees all controls established by the GDPR. In computer security, a hacker is someone who places emphasis on the security devices of computers and network systems. A security hacker is someone who seeks to breach defenses and exploit weaknesses in a computer system or network. Hackers may be motivated by gathering details, such as profit, protest, intelligence gathering, challenge, recreation, or to evaluate system weaknesses to help formulate defenses against potential hackers. The group that evolved around hackers is often referred to as the computer underground. There is a long-standing discussion about the true meaning of the term. In this argument, the term hacker is domesticated by computer programmers who argue that it simply refers to someone with advanced knowledge of computers and computer networks, and that cracker is the more appropriate term for those who break into computers, be they cybercriminals (black hats) or cybersecurity expert (white hats). Eric S. Raymond, author of The New Hacker's Dictionary, argues that members of the computing alternative”.