Do I have to prune DHCP snooping tables or any other stuff from syslog servers or network equipment to comply with a GDPR request to forget someone?

I'm not really sure how far you're legally required to go to comply in regards to networking. I can understand the info kept on the webservers but what about everything else that caches uniquely identifiable information?