General Data Protection Regulation (GDPR) Enforcement Date. From this date those organizations in non-compliance will face heavy fines. The EU General Data Protection Regulation (GDPR) replaces the Data Protection Directive 95/46/EC and was designed to harmonize data privacy laws across Europe, to protect and empower all EU citizens data privacy and to reshape the way organizations across the region approach data privacy. If you process data about individuals in the context of selling goods or services to citizens in other EU countries then you will need to comply with the GDPR, irrespective as to whether or not you the UK retains the GDPR post-Brexit. Organizations can be fined up to 4% of annual global turnover for breaching GDPR or €20 Million.