Respecting GDPR with Trackers

What is the best process to respect GDPR compliance using Rasa.

  1. How to present the data collected from a specific user in the state it is stored ( I assume only in the conversation trackers )
  2. How to delete the data, on demand, for a specific user.