WordPress 4.9.6 has been released, and it provides new tools to assist with General Data Protection Regulation (GDPR) compliance. The update is recommended for everyone, because the GDPR protects all European Union citizens, regardless of where your site is based.
All users can safely update from Dashboard -> Updates or download and update manually, though you should probably backup first just in case, unless you’re already using VaultPress, which you really should be.
The release post will offer some how-to information, and more info will appear in your Dashboard when you update WordPress. Also, if you are a theme or plugin developer, do be aware that there are some important notes for theme and plugin developers.
The tools provided by WordPress only cover the data that WordPress itself collects. All of Automattic’s products have a general page for GDPR info, and WooCommerce has a very helpful guide on managing your store in compliant with the GDPR. If your theme or plugins collect any data, you should definitely check with their documentation or support for specifics on GDPR compliance.
Overall, these tools only assist you with compliance. It is up to you as your site’s owner to take the steps required to be compliant with the GDPR and any local variations that may be introduced.