Our company was initially hesitant to comply with GDPR due to the complexity of scaling the business while meeting the regulations. We underestimated the time it would take to implement changes and made small progress over nine months, hovering around 60%-80% completion on our internal progress dashboard. To address this, we conducted research and due diligence to ensure accuracy, using a hybrid approach to create a new Data Privacy Addendum (DPA) with input from Vanta, our compliance system, as well as other companies in the industry. The process was iterative, incorporating customer feedback to refine the document. While GDPR compliance is an obligation for many businesses using Resend, it's also essential for us to honor our responsibility to protect the rights of EU customers and provide a compliant platform for others to build upon.