Definition
GDPR (General Data Protection Regulation) is a European Union regulation governing the processing of personal data and the protection of individuals’ privacy.
Context
The GDPR is a key element of compliance and directly affects how organizations handle personal data. It is closely linked to information security, internal controls, and regulatory requirements for data protection and processing.
Meaning
The GDPR requires organizations to handle personal data responsibly and imposes significant financial penalties and reputational risks in case of non-compliance.
Example
Unlawful storage or processing of employee personal data without a valid legal basis.
Suggested citation
wirtschaftsforensik.ch Editorial Team: "GDPR / DSGVO", in: Glossary, wirtschaftsforensik.ch, https://wirtschaftsforensik.ch/glossar/gdpr-dsgvo/, accessed April 18, 2026.