How to accommodate GDPR in Dynamics CRM – good practises

I understand that there is a lot of considerations which must be taken before GDPR. However are there any changes (good practises) we need to make in Dynamics CRM Online to accommodate GDPR? I am proactively thinking about things like workflows for removing data after retention period etc..

The answer for this question is:

Dynamics CRM does not play nice with delete – use it with care. GDPR best practices can be found here:

https://www.microsoft.com/en-us/TrustCenter/Privacy/gdpr/default.aspx

https://support.office.com/en-us/article/Overview-of-retention-policies-5e377752-700d-4870-9b6d-12bfc12d2423

https://community.dynamics.com/crm/b/crmchap/archive/2017/08/06/getting-your-dynamics-crm-dynamics-365-for-enterprise-system-gdpr-ready-part-4-managing-data-retention-policy-with-bulk-record-deletion