GDPR does not explicitly address what should happen with personal data when someone dies. It’s all about info that belongs to living people. Some countries in the EU have their own rules about this, so companies need to be aware of those national guidelines. They also have to think about any agreements they might have made about keeping or getting rid of data after a person’s death. Organisations should lean on GDPR’s key principles like not keeping unnecessary data and making sure they’re processing info lawfully, even if it’s about someone who’s passed away.