The General Data Protection Regulation (GDPR) is a regulation created by the European Union to protect people's personal data and privacy. It sets rules for how organizations collect, store, use, and share personal information and gives individuals more control over their data. Organizations must handle personal data responsibly and securely. They need clear and explicit consent to collect and process personal data. Companies must explain what data they collect, why, and how they use it. The word RGPD is the French translation of the GDPR.