The General Data Protection Regulation (GDPR) is a regulation in EU law regarding data protection and privacy for all individuals within the European Union. It also addresses the export of personal data outside of the EU. This regulation took effect on the 25th of May 2018.
How Booking.com deals with your privacy you can find here: https://www.booking.com/content/privacy.en-gb.html
For our affiliate partners we have the GDPR Guidelines in place within the Partner Centre and in the Affiliate Agreement attached to this article.