[jimnotgym]

I have been curating resources for this for a while. I'm hoping to get at least some of them online this weekend. I have already noticed that there are some opinions coming out which are more prescriptive than the actual GDPR text. A lot of it is FUD from IT service providers. I'm hoping to focus on interpretation, grey areas and materials for non-power-users rather than replicate the source material below

The three best resources for a high level user I have found are (in no particular order)

1) Wikipedia as others have said

2) ico.org.uk

3) The GDPR itself

Best tip I can offer is that if your business is not the personal data itself, simply acting in good faith is going to get you 95% of the way to compliance