As the GDPR turns one year old, a look at obfuscation, corporate trickery, and the enforcement blues (Part 2 of 4) …