Just slightly off topic, has anyone done an opinionated legal analysis of what GDPR means in the context of delivering a complex application. For example let’s say a recruitment company internal system. I think business people and lawyers alone struggle to grasp the meaning and spirit of the rules.
