Hi,
For the GPO part, based on my research , there is not such a setting to push the certificate to the 'Personal' folder instead of 'Trusted People"
But a logon script and schedule task can be considered to do this.
Following link for your reference:
https://jasonpearce.com/2012/02/02/import-pfx-certificate-via-group-policy-preferences/(Third-party link)
This response contains a third-party link. We provide this link for easy reference. Microsoft cannot guarantee the validity of any information and content in this link.
Best Regards,