The General Data Protection Regulation (GDPR) came into force from May 25, 2018.  Some of the GDPR’s main concepts and principles are different from the current Data Protection Act and mean businesses will have to do things differently. The GDPR places greater emphasis on the documentation that must be kept to demonstrate accountability.