Practising data protection lawyer >10 years PQE, former IT techie and senior manager in various companies in various continents. For this forum I also wear a commercial hat as co-founder of GDPR360, which is aimed at assisting controller compliance - in effect teaching controllers how to align themselves with the law in ways that will defeat evil plaintiff lawyers such as myself.

Note on URL references: for browsing the GDPR, initially we found gdpr-info.eu is very good. However after a while of using this we took the view this is inadequate for quick-reference URLs deep into "multi-screen" articles [example: Article 14(3)(a)], which we tend to do a lot in advice, automated financial risk assessments, drafting, etc. So for granularity purposes I tend to refer to our own site's version which is the only one I know of that's designed (naturally) to support that.

For avoidance of doubt I have had a presence on the Stack Overflow tech forums under a different username. I understand this is not against the rules of this forum, but if I am wrong on this can a moderator please contact me.