Discourse can be configured to be GDPR compliant, but there’s not anything as simple as a setting that says enable GDPR. Specific compliance can vary by the nature of your organization, where your Discourse site is hosted, etc… considering your site is part of a business, the best way to ensure compliance would be to consult with a lawyer about your specific needs.
There are some things available that may help, for example: