We do explicit redaction of logs forwarded to us so that we don't have to see any end-customer information. The redaction process occurs automatically in the customer's secure environment, so theoretically it is clean from our perspective.
This is indeed a very tricky process, but we have it close enough to make regulators happy. Most of our log information is stored in SQLite and XML, so we can do a lot of parsing magic to achieve determinism.
This is indeed a very tricky process, but we have it close enough to make regulators happy. Most of our log information is stored in SQLite and XML, so we can do a lot of parsing magic to achieve determinism.