[kruuuder]

Thank you for your comments.

"If it's randomly generated ID and if no-one (including you and your employees) can identify an individual from that ID ..."

If this is the relevant criterion, that is, if it's practically possible to deanonymize the data, I'd be in fact on the safe side.

However, theoretically, if someone would access the device of a user and extract the user's ID (which would in practise require enormous efforts), the data could be deanonymized. I'm wondering if there's a way to clarify that.

I will check your linked resources, maybe they clarify that.