It was true some years ago in France (a law from 2011 says you must keep 1 year of logs for user posting content on your website ), and it’s the big question I am asking myself for several months with GPRD comming.
Everyone I ask had its own way of seeing it and I’m confused.
 https://www.legifrance.gouv.fr/affichTexte.do?cidTexte=JORFT... (in French, article 3)
Edit: found the law
For that law you referenced,I am not sure it would apply for a network provider as it would for a site-owner (e.g.: VPN or CDN provider vs a website)
I’m not too familiar with IPv6 but would love to improve support for it if the project is deficient somehow.
“You can use this hash to link requests from the same source, without identifying your users by IP address”
So perhaps it is/will be possible to take actions against bad IPs.
2) Your product is user privacy related and you want to state truthfully you do not record user IP addresses anywhere on your end (such as nginx logs that you may still need to debug issues in production).