Other legal requirements trump the GDPR data minimization. In that case you only need to provide that data when the user wants a data export.
> It is very far from clear that that covers IP addresses, which tend to be recycled Enter stage left: Address van Six, carrying an EUI64 card in his right hand.
The easiest way to comply is to not collect any PII. That is only a problem for companies that make data collection their core business.
ePrivacy directive != GDPR. Even if it is ok under the former it may not be under the latter. And considering that they just updated their privacy policy they seem to be trying to conform to the latter.
It's not like you need to mine new metals every time you mint new coins. Old ones can be recycled.
Other legal requirements trump the GDPR data minimization. In that case you only need to provide that data when the user wants a data export.
> It is very far from clear that that covers IP addresses, which tend to be recycled Enter stage left: Address van Six, carrying an EUI64 card in his right hand.
The easiest way to comply is to not collect any PII. That is only a problem for companies that make data collection their core business.
ePrivacy directive != GDPR. Even if it is ok under the former it may not be under the latter. And considering that they just updated their privacy policy they seem to be trying to conform to the latter.
It's not like you need to mine new metals every time you mint new coins. Old ones can be recycled.