Microservices are gaining more and more popularity for several reasons. But how does this impact when designing for privacy?

We are planning to Use TM Forums OpenAPI for Party when managing individuals and roles in our film production company. The question is how to implement this API in an application and at the same time adhere to GDPR. 

We need to store rules for who can access the information and for what purpose. The receving application should also be aware of these rules so that they follow them, e.g. grandfathered, including updates if permissions changed.

It’s going to be an interesting Party.