[eli]

It's also a GDPR requirement to minimize the collection of personal data and to purge it as soon as it is no longer needed.

[wglb]

There is a way to keep arbitrarily large logs and be fully compliant with GDPR with a little engineering.

[eli]

In a way that lets you go back and identify behavior of an individual person? I doubt that.

[gordian-not]

sounds interesting, can you elaborate a bit?

[wglb]

For each piece of PI/PII data, generate a mapping in a table of that piece to a secure random number, and store the generated random number in place of the personal data, and use that in the log.

Then, if deletion is required, simply erase the row that holds the mapping.

And finally, be sure to not store that mapping table in the same place as your backups or your logs.