We can already configure for GDPR compliant projects, but note that software capability is only a small part of GDPR compliance. Most of it depends on  policies and management.

As for the software, we mostly just need to provide you a way to fully delete accounts with content for RTBF, encryption in transit (SSL), tokenisation (depends on your configuratio) and data export tool. Data export still has no industry standard and is in effect a recommendation. This tool is coming though, but I’ll leave it to Alex T⚜️ to comment on when exactly.