- Josh Dean discussed how Lancaster University approached data protection regulations in a positive way rather than panicking. - They focused on educating staff, designating GDPR representatives, and building internal tools to help control data access while giving people what they need. - Externally, they developed new privacy policies prioritizing students, only collecting necessary data, and providing contact options. - Now, Lancaster has addressed the fundamentals of being GDPR compliant while still being able to function and communicate through preference centers and dynamic content based on consent. - The future of data protection will involve increasingly complex laws internationally as systems strive to keep up and all organizations continue adapting to new regulations and technologies.