Linux Today: Linux News On Internet Time.

General Data Protection Regulation and personal data in web server logs

Jan 17, 2018, 19:00 (0 Talkback[s])
(Other stories by Anonymous)

NGINX and Apache web server logs contain IP addresses, which are now defined as personal data and require special consideration under the EU's new data protection regulation. Personal data should be encrypted and access should be limited. This article outlines one way you can achieve GDPR compliance with your server logs using logrotate and gnupg, and the legal basis under which you can store data without consent.

Complete Story

Related Stories: