Hi Didrik,
Yes, Backendless is GDPR compliant when it comes to storage. All passwords are encrypted and app owners (developers) have full control over the data. Please let me know if you have any specific questions, I’d be happy to answer them.
Regards,
Mark