Architecting the Impossible: Privacy, Consent and GDPR for Large Enterprises