Who is influencing the #GDPR discussion on Twitter: Implications for public relations

Abstract

On May 25, 2018, the European Union (EU) implemented the General Data Protection Regulation (GDPR) to protect individuals' privacy and data. This regulation has far-reaching implications as it applies to any organization that deals with data of EU residents. By studying the discussion about this regulation on Twitter, our goal is to examine public opinions and organizational public relations (PR) strategies about GDPR. The results show that the regulation is being actively discussed by a variety of stakeholders, but especially by cybersecurity and IT-related firms and consultants. At the same time, some of the stakeholders that were expected to have a more active role were less involved, including companies that store or process personal data, government and regulatory bodies, mainstream media, and academics. The results also show that the stakeholders mostly have one-way rather than two-way communication with their audiences, thus fulfilling the rhetorical than relational function of PR.