“As a GDPR compliant company, we would like to explain why you have received this email. We believe that you have a need for business marketing data within your business. We have identified your email address as being an appropriate point of contact within your organisation. This represents legitimate interest in line with the ICO’s guidance. Our Privacy Notice is available here”And finally, if your company is still worried by those scary headlines that we all read earlier this year about career-ending fines for non-compliance with GDPR, read the Information Commissioner's blog where she states that issuing fines has been and always will be a last resort. If you slip up and are found to be non-compliant, the ICO will advise you of the changes that you need to make, maybe they will take enforcement action to commit your organisation to comply with GDPR. The ICO has the serial and wilful abusers of data protection in its sights. Companies which can show that they have made efforts to comply with GDPR are unlikely to be hit with financial penalties.