|TRIVAGO N.V. filed this Form 20-F on 03/06/2018|
example, trip booking services). The GDPR enhances data protection obligations for processors and controllers of personal data, including, for example, expanded disclosures about how personal information is to be used, limitations on retention of information, mandatory data breach notification requirements and onerous new obligations on services providers. Non-compliance with the GDPR can trigger significant fines of up to €20 million or 4% of total worldwide annual turnover, whichever is higher. We may incur substantial expense in complying with the new obligations to be imposed by the GDPR and we may be required to make significant changes in our business operations and product and services development, all of which may adversely affect our revenue and our business overall. We could be adversely affected if we fail to comply fully with all of these requirements and other laws in jurisdictions where we operate or target users. In addition, we could be adversely affected if legislation or regulations are expanded to require changes in our business practices or if governing jurisdictions interpret or implement their legislation or regulations in ways that may have a material adverse effect on our business, results of operations, financial condition and prospects.