GDPR - 1 year later - has anything changed?
It's been over 1 year since GDPR rules came into effect in the UK, but what impact has it had?
Be interested to hear if it has impacted your role?
Have you noted any difference?
Was it all worth it?
We have experienced a number of "right to be forgotten" events. They are cumbersome and administratively heavy.
I would agree with Michael - some up front work to change T&Cs and make sure incumbent suppliers had the correct arrangements in place but nothing different to ongoing work. I suspect it might have more of an impact on an organisation that has more services that handle data outsourced than was the case in my most recent role.