General Data Protection Regulation (GDPR) Guidance

Europe’s General Data Protection Regulation (GDPR) is new privacy legislation adopted by the European Union (EU) that is intended to protect the personal information of individuals, including consumers and employees. There are very limited circumstances in which the GDPR may directly or indirectly apply to Georgia governmental entities.

GDPR applies only to the extent Georgia governmental entities have a physical location within Europe, monitor consumer behavior in Europe (such as through electronic data collection or analysis), or offer goods and services into Europe. In the rare case that a Georgia governmental entity conducts any of these activities, legal counsel should be consulted to evaluate whether the activities pose a genuine compliance concern and, if so, how best to explore compliance options.

For more guidance about how GDPR affects Georgia government entities, please send an email to