Experts have warned compliance with the general data protection regulation remains a major challenge facing advisers, with some still missing the mark two years on from the rules’ introduction.