The General Data Protection Regulation was designed to harmonize data privacy laws across Europe, to protect and empower all EU citizens’ data privacy, and to reshape the way organizations across the region approach data privacy. The GDPR will come into force in May 2018.

For a majority of insurers, regulation — and more precisely consumer data protection regulation (interpretation, changes, and lack of clarity) — is the major concern when they use using consumer personal data that is publicly available on social networks or on other online data sources.