i recently spent year+ on managing gdpr compliance implementation in company where I work (multinational *aaS). Our current stance that we will continue as usual, where usual been that there is no new agreement. Because breaking down all gdpr compliance is easy but to restore it to compliant state is hard.