Yes. We do this as part of our fraud mitigation techniques. For example, we collect an IP address so a person who at first is determined they are ineligible to participate doesn’t simply change their answers and try again.
We also use IP address information to mitigate unauthorized access to our systems and individual user accounts.
All IP address information is encrypted at rest. Any IP address information is stripped from data downloads and is not available for viewing by any human party without access to our servers (our CEO doesn’t even have access to this information).
The data will only be reviewed by humans to review potential fraud as flagged by our fraud screening system or attempted unauthorized access.