Curious to hear more about how you all are handling GDPR documentation with tradeshows. Are you relying on their contracts as a data processing agreement? Or are you asking them to sign your DPA? Our InfoSec team wants each show vendor to sign a DPA (including those not in EU, in case people from the EU are in attendance), and the vendors are pushing back on this, saying that their regular contract is sufficient. I'm not sure how other businesses are handling this and would love to see how this is going for other members of the Marketing Nation!
It's simply impossible to get traceable consent on a Tradeshow. You will not be able to prove that a form fill out on you booth or a badge scanner issued excel file are genuine. Hence the restlessness of every one around this... Unless of course, you have every one on the boot use their own Mobile device to register or have each of them fill out a docusign or else fill out and sign an ultra-modern hand-written paper form.
The way I advize my customers to handle this is the following:
I could think of another way: post a QR code on your stand that people would scan to access a Marketo LP with an opt-in field from their mobile. That would be traceable and opposable.