Who does the GDPR apply to?

Any organisation which processes or holds the personal data of data subjects residing in the EU will be obliged to abide by the laws set out by the GDPR. This applies to every organisation, regardless of whether or not they themselves reside in one of the EU member states.