The General Data Protection Regulation (GDPR) is an EU regulation. It aims to give people more control over their data and places various requirements on organisations and charities in how they use personal data. GDPR governs the way in which we can use, process, and store personal data.