Due to the nature of Highlight's core product, we keep privacy as our top priority. We've built a few ways to redact/mask certain DOM elements while still preserving the structure of your DOM recording. It is important to note that for both of the below solutions, all data is sanitized on the client, so sensitive data never reaches our servers/platform.
One way to sanitize your recordings is by adding the
highlight-block CSS class to elements that should be ignored.
The Highlight snippet will in-turn measure the dimensions of the ignored element, and when the recording is being replayed, an empty placeholder will replace the content.
For sensitive input fields that your team would like to ignore user input for, you can add a CSS class
highlight-ignore that will preserve the styling of the input element, but ignore all user input.
Strict Privacy Mode
If you don't want to manually annotate what elements to not record then you can set
true when calling
H.init(). Strict Privacy Mode will obfuscate all text and images. The text obfuscation is not reversible and is done on the client.
Here are some examples:
<h1>Hello World</h1>will be recorded as
<img src="https://my-secrets.com/secret.png" />will be recorded as
<img src="" />
Obfuscating a Specific Element
You can now obfuscate specific HTML elements by adding the
highlight-mask CSS class. The effect is the same of setting
enableStrictPrivacy but applies to the specific HTML element that you mask.