The General Data Protection Regulation standardizes data protection law across all twenty-eight EU countries and imposes strict new rules on controlling and processing identifiable information. All websites collecting data from EU citizens must meet these GDPR requirements.