alt Hacker NewsWelcome to my online guide on how to comply with the GDPR. Here we’ll cover the basics, the steps you should follow that will help everything else fall into place on your journey to compliance.
Step 1: Don’t invade users’ privacy.
There is no step 2.
People signing up for newsletters (which this site has) then immediately submitting a SAR was an unsolved issue until ECJ finally ruled against it last month [0]. I think you're missing a few steps there. It would be nice if we lived in a world where legal compliance automatically conferred legal immunity.
[0] https://www.heise.de/en/news/GDPR-ECJ-curbs-systematic-abuse...