Privacy addresses the condition of being free from observation or disturbance by others. Cloud computing has led to the establishment and strict enforcement of many new data privacy laws. One of the most evasive of these is the General Data Protection Regulation (GDPR). Approved by the EU parliament on 14 April 2016, its enforcement date is 25 May 2018. A non-compliant organization can face hefty fines. GDPR invalidates the Data Protection Directive 95/46/EC and has a goal of harmonizing European data privacy laws, protecting and empowering all EU citizens' data privacy, and reshaping the how regional organizations approach data privacy. It applies to all personal data processing of EU residents, regardless of the company's location. It also covers data processed outside of the territorial limits of the EU and to the processing of personal data for EU citizens by non-EU companies when selling goods or services to an EU citizens. Penalties can be up to 4% of annual global revenue or €20 million, whichever is greater.