We have the same problem with Bitcoin. On one hand we'd love a system that automatically collects a stack trace, memory dump, information about the environment on a crash and sends it to us (like Google Breakpad does). On the other hand it opens a whole can of worms if accidentally a private key is sent.
Encryption is no solution in this case; the data still is stored somewhere which could be compromised.
It's very hard to automatically collect diagnostic data without potentially collecting sensitive data...
lenidot|12 years ago
I'm not happy with the answer that I settled on with zindus: http://zindus.com/i/reporting-bugs because there is a lot of sensitive information in a logfile.
Even when someone gives permission and sends you a logfile, if there is sensitive data it creates a maintenance burden on your end to deal with it appropriately.
One (not very good) idea: pass the diagnostic data through some sort of anonymizer. Unappetizing because it would involve a lot of work and would need heuristics that could only be learned through trial and error.