Email... yep... we all receive hundreds of 'em every week (or day!). I've seen a ton of articles relating to the sending of email 'marketing' but what about just generally receiving and storing emails relating to day-to-day business? Has no-one considered this??? According to GDPR:- 'Personal data' constitutes anything that can identify an individual. Retention of 'Personal data' requires explicit consent. Every single email ever sent to/from anyone WORLDWIDE contains a name and an email address and therefore has personal data that 'could' be used to identify an individual. Therefore EVERY email ever sent/received falls into scope of GDPR. I have never received 'explicit consent' from anyone that has ever sent me an email stating that I can retain that email for the purposes of contacting them in relation to anything the email contains. Am I therefore expected to delete all emails within a short time frame after receiving them? I'd be interested in anyone's thoughts on this. Thanks in advance.