First, there is no such thing as a ‘GDPR expert’ per se. I like to call myself a ‘GDPR Practitioner’, because this is what I do!
I do get called an expert from others, including Privasee marketing 😉
The fact, as I’ve said a hundred times, is that I know enough to know when to call in other experts in. e.g. legal, ITIL/ITSM, Six Sigma, Test data management, infosec, etc., because there is a load of work that can be done without GDPR expertise, just to get the groundwork right.
This is great, because there is no shortage of these competences, at least not on the level of GDPR competences, and well they are less expensive. Although maybe they will figure out pretty soon how important they are to GDPR compliance and start upping their rates 😉
Of course there is loads of GDPR specific work that needs to be done too, but you’d be surprised how much you could fix yourself with just a little guidance from a GDPR Practitioner 😉