Inconsistency between the way in which the law is structured, and the way in which technologies actually operate is always an interesting and useful topic to explore. When a law conflicts with a business model, the solution will often be changing the business model. However, when the law comes into conflict with the architecture of hardware and software, it is less clear how the problem will be managed.

In this paper, we analyze the contradiction of blockchain technology and the requirements of GDPR. The three contradictions we examine are (i) right to be forgotten versus irreversibility/immutability of records, (ii) data protection by design versus tamper-proofness and transparency of blockchain, and (iii) data controller versus decentralized nodes. We highlight that the conflicts can be handled through focusing on commonalities of GDPR and the blockchain, developing new approaches and interpretations, and tailoring the blockchain technology according to the needs of data protection law.

法律的结构方式与技术实际运作方式之间的不一致始终是一个有趣而有用的话题。当法律与商业模式冲突时，解决方案通常将改变商业模式。但是，当法律与硬件和软件的体系结构发生冲突时，不清楚如何解决该问题。

本文分析了区块链技术的矛盾与GDPR的要求。我们研究的三个矛盾是（i）被遗忘的权利与记录的不可逆性/不变性; （ii）通过设计保护数据与区块链的防篡改和透明性; （iii）数据控制者与分散节点的对抗。我们着重指出，可以通过关注GDPR和区块链的共性，开发新的方法和解释以及根据数据保护法的需求量身定制区块链技术来解决冲突。