I have a new app that I am working on where user privacy is of the utmost importance. Users will be cryptographically associating their user account with Bitcoin addresses, and I don’t want to store any data that can link their identity to their Bitcoin address.
I need to ensure that no IP addresses, emails, or other personally identiable information is stored (in case the server becomes compromised). Email-less user account packages exist, so I don’t think that’s a problem…
Correct me if I am wrong, but the only place that I am aware of that IP addresses are stored is in the accounts-base session logic after a session key and cookie are generated. Therefore, disabling the renewable session feature (or the accounts-base package) essentially stops all logging of IP addresses.
Is this correct?