The Data Protection Regulation is mainly about:
- How and when personal data may be handled
- What requirements are placed on the person responsible for personal data (“Personal data controller”)
- What requirements are placed on the person who handles personal data on behalf of another (“Personal data processor”)