The GDPR, or General Data Protection Regulation, is the new set of rules on data protection from Europe.
Coming into force in mid-2018 and replacing the Data Protection Act, the rules from the European Commission aim to strengthen and unify data protection for individuals within the European Union.
The Information Commissioner’s Office (ICO) has produced a checklist which highlights 12 steps businesses can take now to prepare for the changes. You can find this information here https://dpreform.org.uk/
The full text of the Directive can be accessed here http://eur-lex.europa.eu/legal-content/EN/TXT/PDF/?uri=CELEX:32016R0679&from=EN