Those 4 Horrible Letters or How We as an Industry Prepared for GDPR