Data Security and Privacy FAQs
Metriscope records the HTML that was shown to the individual website visitor along with the interactions they make with the site (mouse movements, clicking, interacting with forms) as well as any changes that these actions make to the page (expanding/collapsing parts of the screen, hovering over menus etc.). Metriscope does not record the assets referenced by the page (images, style sheets etc.). All data sent to Metriscope is encrypted in transit. All data entered by the website visitors can be redacted so that this cannot be seen by anyone during the replay of the session, the data redaction occurs in the website visitor’s browser and as such is never transmitted to Metriscope.
Yes. Metriscope offers multiple deployment options which allows the deployment of the solution within the website owners own security perimeter, where personal information is required, for instance, to meet a compliance requirement.
No. This field is redacted as part of the default settings of the service, so the entered information does not leave the browser. In addition, website owners who use the Metriscope solution can decide to either redact the password field or not to capture the password field at all.
Yes. You can replay sessions that took place on any device types, including mobile phones and tablets, and the replay will show exactly what was seen by the user of the website. Regardless of device type, the same masking approach to redacting personal data is taken.
All communication with the Metriscope environment is asynchronous via an encrypted link (HTTPS) for all session data collected.
Metriscope can be deployed onto a number of different infrastructure environments, either running on hardware controlled by the owner of the website or in a cloud environment hosted by Metriscope or under the direct control of the website owner. Metriscope can be deployed within any cloud hosting provider however Metriscope’s SaaS service is currently held in the Metriscope environment provided by Amazon Web Services or Google Cloud Platform. The data is located in the same geography in which the website owner is based. For customers based in the European Union, the data centers are currently located in the Republic of Ireland and Germany. All session data within Metriscope is encrypted at rest.
Access to the Metriscope session data is highly restricted to the website owner via a secure web portal with a strict password policy and multi-factor authentication is available.
The default length of time that session data is held in the Metriscope environment is 30 days, after which time the data is securely deleted. We believe that this is a sufficient length of time for the website owner to use the data for the legitimate purpose for which it had been collected, although the automatic deletion policy can be altered depending on the needs of the customer.
No. Metriscope will never share the data it holds with any third parties (other than the storage of session data at AWS/Google), unless required to do so by law.
Yes. In order to comply with our customers’ privacy policies Metriscope has developed many tools to exceed our client requirements and security best practice in the scrubbing of sensitive data. Regardless of deployment option, all input field contents are not recorded or stored – they appear starred-out, or masked, during playback. During the setup process, customers have the option to explicitly specify input fields they would like to reveal but this can only be configured if the field does not contain sensitive data. Metriscope regularly audit our SaaS environment to ensure we are not capturing sensitive data.
With the approach taken by Metriscope, the solution does not capture any user input elements by default, however there is the potential to capture personal data that is echoed back by the application in the response of a page (data echoed in input elements is still automatically scrubbed). In order to prevent this data being captured, Metriscope provides a method to scrub DOM nodes matching given CSS selectors on pages where the URL matches a given regular expression. This allows all child nodes of nodes matching the CSS selectors to be either completely excluded from capture or all child text nodes to be obfuscated before transmission to the Metriscope environment.
Yes. Metriscope allows website owners to disable data collection from users who have Do Not Track (DNT) set in their browsers.
The privacy of visitors to our client’s websites and the security of all types of data assets in our possession are of paramount importance to all of us at Metriscope. Metriscope's software has been certified under ISO/IEC 27001:2013 since March 2017 (certificate number IS662212). This internationally recognized Information Security standard provides external validation that Metriscope takes the protection of any data within its control seriously, and evidences that it has the appropriate policies and procedures in place to provide the necessary technical, physical and procedural controls required to secure the data it holds. Metriscope also complies with the EU-U.S. Privacy Shield Framework as set forth by the U.S. Department of Commerce regarding the collection, use, and retention of personal information transferred from the European Union to the United States. Metriscope has certified to the Department of Commerce that it adheres to the Privacy Shield Principles.