I learned a new word today.
Just when I thought the depths had already been plumbed as deep as they would go with privacy policies, some idiot presented me with this,
Yes, I had to go and look it up. My memory isn't what it once was.
As in, "We collect a nugatory amount of data when..."
The dictionary definition of "nugatory" is, "of no value or importance", or, "useless or futile".
If the data you collect is "of no value or importance", WHY are you collecting it?
An IP address is personal data. I am not often given to quoting the text of the GDPR, I find I usually have other things to do, yet today I'll make an exception.
Article 5/1/c: "Personal data shall be... adequate, relevant and limited to what is necessary in relation to the purposes for which they are processed."
Which means, in my little mind, that if you collect personal data but it is of no value or importance, you are actually in breach of the data minimisation principle. You are processing personal data you don't need.
Oh the tangled web we weave...
Better still, use a privacy notice and use it properly. I can show you how.
Every day a new learning opportunity...