privacy_log
67 sites
Security covered
Synopsis
Privacy Log will remove the client IP address from all log entries created through Logger API, regardless of the logger(s) used.
If database logging is enabled, the Database log messages to keep setting will be extended with a Database log messages expiry setting, that is set to 1 week by default. This will make sure that old log data is removed reliably, even if your volume of log entries is low.
Potential Use Cases
You may find this module useful, if you want to
- log less personal data of your users.
- ensure compliance with data protection regulations.
Requirements
This module requires no modules outside of Drupal core.
Usage
The module will just work. Optionally, adjust the Database log messages expiry setting at Configuration > Development > Logging and errors.
Similar projects and how they are different
- Cryptolog: Anonymizes the IP address across the whole request stack by encrypting it instead of just removing it from the log messages. Much more comprehensive, but also more complex solution.
- Database Logging Time: Adds an option to limit the number of database logging messages by time, which is one of the features also provided by Privacy Log. Allows for more complex configuration than Privacy Log. A major difference as of December 1, 2025 is that Privacy Log adds the option on top of the existing row limit option provided by Drupal Core, while Database Logging Time replaces the core option entirely. Still, if you only need this feature of the module, Database Logging Time is probably a good alternative you should seriously consider.
Credits
Current maintainers:
The development of this project has been partly sponsored by werk21 GmbH.