Abstract
The authors deal with the issue of the new GDPR regulation. Reference is made to the new definition of personal data under this Regulation, including the lawfulness of the processing of personal data.
Attention is also paid to the requirements of the consent of the entities and the rights of data subjects in the context of their security.. A new Institute for Data Protection Officer is introduced.
The authors also touch on the context of this issue directly in the health care sector.