General Data Protection Regulation

A European Union regulation (2016/679) that governs the collection, processing, and storage of personal data for individuals within the EU and EEA. GDPR requires that consent for data processing be freely given, specific, informed, and unambiguous—which has significant accessibility implications. If consent mechanisms like cookie notices are not accessible to users with disabilities, those users cannot provide valid informed consent. GDPR Article 12 requires information to be provided in an accessible format, creating a legal obligation for accessible privacy interfaces.