This is a grey area that requres a lot of care. I would make partners and users sign an NDA, or "rechannel" logs and such to another pipeline that's private and not post them.
Thanks for the suggestion, Kelly! If others are trying to figure out how to handle this situation, here is some other advice that I received from another community:
I've always felt that a strong policy that indicates that users should not, under any circumstance, post any personally identifying information (full name, personal e-mail address, phone numbers, etc) or content that poses a risk to their security is absolutely essential for all Communities. In almost all Communities that we provide Moderation Services to, we remove any content that falls under such an umbrella.
Protecting users and their identities/safety should always be the top priority.
In your particular case, I'd say that having a cohesive policy and enforcing it probably isn't enough. Perhaps some more education is in store for your users? You may find success in creating a small FAQ that alerts users to the dangers of uploading thier logs and such, and explain the steps to eliminate any risks without sacrificing the integrity of the data that they are attempting to provide you access ""