Walys In my case, have implemented a "Fake GDPR" in any website I working. For me a simple GDPR (not 100% legal) is ok!
Forgive me for being so direct here, but this is a really bad decision in my view. As a security and privacy expert, if you claim to have a framework in place, yet actually have nothing, then you are asking for trouble.
Even if you think it's a bad idea, it's the law.