I have an actual business, thank you. And I did my homework by talking to a lawyer about it. What I got from this talk is, that most of the stuff that is going around is pure panic mode.

Please, don't take my words as granted but talk to an actual lawyer. You'll probably even find a free session for startups somewhere in your city, at least in Europe.

Ask the regulators. The ICO provide comprehensive guidance documents, a wide range of tools to facilitate compliance and a dedicated helpline for small organisations. They're extremely busy at the moment, but they'll be more than happy to explain your obligations under the GDPR and the best way of achieving compliance.

https://ico.org.uk/for-organisations/guide-to-the-general-da...

https://ico.org.uk/global/contact-us/advice-service-for-smal...

Point of order, the ICU is one of many potential regulators & likely not an important one given brexit.

What hav the Danish & Belgian regulators been doing lately?

ICO is just the UK regulator. How about the regulators of the other 28 EU states?

There are specific mechanisms in place to ensure that the regulations are applied consistently, set out in Chapter 7 of the GDPR.

https://gdpr-info.eu/chapter-7/

This is already falling apart. Some countries like Austria already decided to reprove but not to fine offenders. See German article: https://www.heise.de/newsticker/meldung/Keine-Strafen-Oester...

Harmonized. So an ok from one would count pretty heavily when interacting with others.