undefined | Better HN

0 pointsdgb233y ago0 comments

Would have assumed that anonymous logging is fine? Generating usage data? Error logs? As long as it’s not sold, private data or used to identify the user?

Highly doubt that kind of gathering is a problem. If it were you could close 95% of the web.

0 comments

Semaphor3y ago

As I said, PII. So if your only PII is storing the IP one-way hashed and salted, keeping the salt only for a day as like (I think) Plausible does, it’s probably/possibly okay.

Besides that, intent also matters. For example, we had to start logging IPs for every newsletter change, or you can log IPs in your access log for security reasons without consent. Logging the same IP into your analytics tool becomes an issue.

j / k navigate · click thread line to collapse

0 pointsdgb233y ago0 comments

Would have assumed that anonymous logging is fine? Generating usage data? Error logs? As long as it’s not sold, private data or used to identify the user?

Highly doubt that kind of gathering is a problem. If it were you could close 95% of the web.

0 comments

Semaphor3y ago

As I said, PII. So if your only PII is storing the IP one-way hashed and salted, keeping the salt only for a day as like (I think) Plausible does, it’s probably/possibly okay.

j / k navigate · click thread line to collapse