On 25 May 2018 EU Regulation 679/2016 concerning data protection (so-called GDPR, General Data Protection Regulation) came into force, which introduces new and more complex requirements that professional and companies are required to comply with, in order to avoid administrative fines of up to € 20,000,000, or for companies up to 4 % of their total annual turnover for the previous year, if this figure is greater.