> You will have an effective "right to be forgotten" so that you can remove your personal information from any site if you so wish;
> Web operators must provide 'privacy by default'. The default settings for all services should be the most privacy-friendly;
> You will have the right to know how your personal data will be used and where your consent is required, you must give it explicitly;
> You will be able to move your personal data from one service provider to another more easily ("data portability);
> Organisations processing your personal data must inform you as soon as possible if your data has been compromised;
> Your personal data will enjoy the same level of protection if it is transferred outside the EU as applies within the EU - vital in this age of instant global data flows.