Comment by immibis
7 months ago
That logging you want (every command and response) would have been a huge GDPR violation.
I suppose they could have logged only if a bot token was detected in output. But if you'd think to do that, then why not also just block the output?
You do not understand GDPR at all. Both performance of contract and legitimate interests cover security issues and associated logging.
Logging all user inputs and outputs forever "because what if there's a bug" (and you don't know what the bug will be) will not fly with any judge.
> judge
Comprehensively unaware of the GDPR enforcement process also.
What will you google next, I wonder?