Just a few weeks back, one of the leading social media platforms agreed to pay $150 million over misuse of consumer consented data. Since the GDPR took effect in May 2018, we’ve seen over 900 fines issued across the European Economic Area (EEA). If we carefully analyze the nature of the fines, and how they could have been avoided, it broadly falls across two areas: