So don't give permission? (or don't install the app in the first place) I thought this was about malicious apps that collected private data behind your back.
This comment would have made sense in the late 90s.
Today we have decades of experience that the majority of users are not capable of making informed decisions when it comes to topics like app permissions. Especially the flow on implications e.g. allow the app to record the screen could mean your bank details are exposed.
Obviously not
https://www.rewind.ai/
GDPR has no bearing on what apps can and cant do, as long as they ask you permission for their use of personal data first.