We consider these not suitable for GDPR compliance however are suited to some business function where device encryption is not necessary.