It is useful, thanks. It tells me that, as a data controller, I could (the usage of may and could throughout those quotes is interesting) keep a history of what changes I make to a policy so that if a subject requests what they specifically consented to, I can inform them of that.
My personal approach to this would be to keep a document or a thread where I document the full text of a policy by date. So if I have an initial release of my policy on 22nd May 2018, and I revise it in February 2019 and again in January 2020, then a subject who last agreed to the policy in March 2019 can be shown the text from the February 2019 version.
Not every single part of complying with these regulations requires a complex software solution.
My personal approach to this would be to keep a document or a thread where I document the full text of a policy by date. So if I have an initial release of my policy on 22nd May 2018, and I revise it in February 2019 and again in January 2020, then a subject who last agreed to the policy in March 2019 can be shown the text from the February 2019 version.
Not every single part of complying with these regulations requires a complex software solution.