Reply to Tyus' post with 170 words. Add your thought to his post. The law I am choosing is the General Data Protection Regulation (GDPR). GDPR is a law of the European Union (EU) which was passed in 2016 and went into effect on May 25, 2018. It aims to provide an overarching standard for how organizations handle, process, and store personal data of people who are located within the EU and European Economic Area (EEA), and address exporting personal data out of these areas. This legislation is for any organization, anywhere, if they are processing or gathering the personal data of EU citizens. GDPR has a comprehensive range of protections, from requiring organizations to have a legitimate basis for processing the data to applying proper technical and organizational security measures, to enabling transparency in the way their personal data is processed. The key focus is safeguarding the rights and privacy of the individual by putting strict accountability requirements on organisations. Generally speaking, GDPR is an enormous factor in the world today of tech as it protects the privacy of millions and requires an highest level of protecting information that many other countries and regions have borrowed as a model for their own law as many have agreed that personal information is a huge priority for everyone to protect