Data encryption and pseudonymization is a hard requirement for GDPR.
One way to deal with content that contains personal data and lessen some of the burdens of the GDPR is to encrypt it.
Under GDPR, unlike the older Data Protection Directive, encrypting data does give you some benefits. It’s explicitly mentioned as a legitimate way to address the security of processing personal data—one of the law’s key requirements.
Companies that encrypt their personal data also gain the advantage of not having to notify data subjects in the case of a breach. (They still, though, would have to notify the local DPA.)