EspoCRM is compliant with the GDPR (General Data Protection Regulations). It prioritizes the protection and safety of personal customer information. The system provides the ability to quickly view and erase personal data of specific records (Contacts, Leads, Accounts and entities of Person type). Since different businesses may store different kinds of personal data, the admin users can specify the fields that contain private information, so that later they will be available for data privacy management. The regular users can view and/or erase customer personal information at any time if a customer requests some data to be deleted or to be forgotten. In this way, the system ensures that customer data remains secure and is handled seriously and encourages the right data management policy within the organization.