The idea is noble but irl. this is not going to do much / remain unused.
Logging is one thing, being able to react to logging is another, reacting is important when handling attacks of any kind which is often based on logging (regardless if this is internal or external code-wise).
Fully automated attack handling systems need full information, having gdpr logging might be nice but will become a useless log no one will use.
If one ever needed to produce a gdpr log a simple regex search&replace script will do that.
---
nginx for Windows http://nginx-win.ecsds.eu/