This ticket is for tracking our progress with GDPR Compliance...
Create document that explains and highlights:
how and what kind of data we are using for what
how we can be contacted for requests (card10 and flow3r matrix channels mostly)
how you can gather your data, where we store it (only locally, temporarily, no outside services outside our hosters)
how you can disable/forget all your data (we can)