Starting from version 4.5.8 OBAS can be configured to be GDPR-compliant out of the box:
Provider is able to erase customer personal data with the help of a special script.
Provider is able to export personal data of a customer (on the customer's request) with the help of a special script.
GDPR Hotfix for OBAS version 4.5.7 can be found here.
OBAS GDPR compliance tips for OBAS versions prior 4.5.7 and customized environments can be found here.