GDPR

GDPR (General Data Protection Regulation) is a comprehensive data privacy law enacted by the European Union in 2018. It governs how organizations collect, store, process, and share personal data of EU residents, regardless of where the organization is based. Non-compliance can result in fines up to 4% of global annual revenue or €20 million, whichever is higher.

Key GDPR principles include lawful basis for processing (you need a valid reason to process personal data), data minimization (collect only what you need), purpose limitation (only use data for the reason it was collected), and individual rights (access, correction, deletion, and portability).

For developers working with APIs and datasets, GDPR is relevant when the data includes personal information about EU residents. Property listing data (public prices, addresses, property attributes) is generally not personal data. But if you store user search behavior or contact details from listing agents, GDPR compliance applies.