[oblio]

GDPR doesn't define IPs as PII, unless you use them as such. If you have a legitimate use for IPs, then you're fine.