At first glance, blockchain and the General Data Protection Regulation (GDPR) may seem like they would be wholly unrelated, complete strangers. But as applications of blockchain expand into the mainstream – payments, healthcare and security, to name a few areas – there are increasing concerns about the (lack of) compatibility between applications of blockchain technology and requirements under the GDPR. Basically, the seeming strangers are quickly developing into potential foes. But are they really that irreconcilable? And what are the advantages of turning these apparent foes into friends – or at least enabling them to coexist?