GDPR is an abbreviation of General Data Protection Regulation. The full name of the regulation is “Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC”.
Among other things, GDPR outlines the rights that citizens in the EU and EEA have regarding their personal data and the steps that institutions/companies must take when storing and processing those data. It also addresses the transfers of personal data outside the EU and EEA.
GDPR is directly applicable to all EU and EEA countries since 25 May 2018 and imposes obligations on companies and other organizations that process personal data related to individuals in the EU and EEA and outside. GDPR applies to personal data, meaning any information that can be used to identify you as an individual.