From what I gather broadly you have the following features for GDPR:
- Cookie consent
- Ability to delete members (and associated data)
- EU Standard Contractual Clauses (SCCs)
- Representative in the European Union for data protection
- Ability to export member-specific data
Here is a detailed post33 on how to use each of these features.