The US Office for Human Research Protections (OHRP) has compiled a very useful list of the country-by-country guidelines and

supporting information on the impact of the EU General Data Protection Regulation (GDPR)

  1. If you are new to the General Data Protection Regulation, you may want to review the text of the regulation to familiarize yourself with basic GDPR concepts and terminology: Keep in mind that the scope of the GDPR is broader than U.S. privacy laws such as HIPAA.
  2. The names and website addresses of each country’s data protection authority are seen in Columns B and C.
  3. General GDPR Guidance documents are listed in Column D. If the information is not available in English, an online translation program can be helpful.
  4. The table lists guidances specific to Research (Column E), Legal Basis (Column F), Consent (Column G), and International Data Transfer (Column H). Country-level interpretations and procedures are likely to evolve over time, and data protection authorities may release new guidances.