The aim of the GDPR (General Data Protection Regulation) in data protection legislation is to enhance the privacy and protection of personal data for individuals within the European Union. It establishes strict guidelines on data collection, storage, and processing, ensuring that individuals have greater control over their personal information. GDPR also imposes significant penalties for non-compliance, encouraging organizations to prioritize data protection and uphold user rights.