[twobat]

As an user I feel that GDPR changed nothing. Google, Facebook and whatever else tracks you to the bones did not change one bit (for me).

As a sys-admin, GDPR invented all sorts of jobs. Jobs well intended. But these jobs are filled by people that are neither lawyers nor IT people. Whenever I interact with them I feel like they just want to check some boxes that makes the org compliant and go home. They don't enforce or apply GDPR, they enforce those checkboxes.

* all of the above in my limited experience.

[buboard]

plus nobody can be sure whether they 're GDPR compliant. I bet facebook thought so too.

[Hamuko]

Yeah, I bet they're all good boys and girls who couldn't have possibly imagined that all of the secretive ways they go about collecting data could be wrong.