The way you demonstrate GDPR compliance (or your journey towards it) is through a system of record-keeping and documentation.