To avoid the application of GDPR you should deal with anonymous data. Anonymized data are not under the GDPR. However, there will always be some aspects that require compliance with GDPR (i.e. job contracts, email between employees and researchers, and so on). Being based in the EU you are required to comply with GDPR.