Tracking of Sensitive Information

Introduction

UseItBetter tracking has been designed to collect as much information about user behaviour as possible in an automated way and the same time reduce to minimum the risk of unintentional collection of users’ personal or sensitive data.

Before you start tracking real users on a website that may contain personal or sensitive data you should make sure that:

  • no sensitive information is passed in URLs of pages visited by users,
  • no sensitive information is used as an ID or a classname of an HTML element of a page,
  • no form fields that allow users to select a value (as opposed fields to input any value) contain sensitive information or those fields are marked for masking (read below about tracking of interactions with form fields).

Tracking of Page Content

UseItBetter Tracking Code, does not collect any content displayed on the page, unless specifically instructed to do so. This means that the tracking code can be safely added to pages with sensitive data displayed.

Tracking of Interactions with Page Content

UseItBetter Tracking Code tracks interactions with HTML elements containing page elements and not the content itself. The events tracked as result of those interactions contain identifier of a page element user interacted with which are formed out of HTML tag names, ID attributes and CSS classnames.

Tracking of Interactions with Form Fields

When a user changes a value of a form field, the tracking code captures, besides an identifier which is tracked for all kinds of interactions, some additional data:

  • the new value of the field,
  • for certain types of fields (option field) a label associated with the new value,
  • for certain types of fields (input [type=checkbox], input [type=radio] field), information if field is selected/checked or not,
  • if assigned, name of the field.

By default, value entered into text fields (input [type=text], input [type=checkbox], textarea fields) is masked by the tracking code before the value is sent to UseItBetter servers in order to make it impossible to decode the real value entered into a form field. Value of form field that allows a user to select one or more available options (option, input [type=radio] fields) is tracked as-is, without masking.

Read more about tracking of form fields and masking of values in “Tracking of Interactions With Form Fields” article.

The above rules apply to both values entered into form fields by users and entered programatically by your website.

Tracking of Cookies

Upon customization, UseItBetter can be used track selected cookies from a website. If that is the case, any pieces of private information stored in such cookies should be masked or replaced with masked values before sending to UseItBetter servers.

Other Data

Upon customization, UseItBetter can be used track any data as long as it is in accordance with either standard UseItBetter Terms of Service or custom terms specified in the contract.

Tracking of User IP Numbers

IP numbers of users visiting your website are sent to UseItBetter servers with every network request as a part of a standard communication between two web entities.

User IP number is used to detect user’s location with precision to Country and City and then replaced with hashes generated using MD5 algorithm based on their actual values to remove Personally Identifiable Information from visit data.

Users IP numbers are temporarily stored in server logs for maintenance and security purposes and are frequently removed from servers.

Data Verification

To provide full transparency of data collection, users of UseItBetter are provided with:

  • debugging tool which allows to preview what data is being tracked while interacting with a website,
  • access to complete data set of each individual visit tracked by UseItBetter to verify what data was collected, when and how
  • Upon discovering that a visit contains any personal information of your users you should contact support or your account manager to remove that data.

Ask a Question

Your email address will not be published. Required fields are marked *

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>