Overview

Form Privacy helps you proactively protect end users’ privacy by preventing Fullstory from logging potentially sensitive user data entered into form elements on your site.

Notes:

• Form Privacy is automatically enabled for all Fullstory accounts.
• Form Privacy cannot be disabled in Fullstory Free accounts. 

How Form Privacy Works

Form Privacy enables a set of six element capture rules based on CSS selectors that mask or exclude form elements. Mask rules prevent text values from being captured while still capturing end-user interactions like clicks and change events. In contrast, exclude rules will prevent both text values and interactions from being captured.

What inputs does Form Privacy affect?

Form Privacy introduces the following six rules:

• Mask <input> elements. This tag specifies an input field where users can enter data on your site. This rule will broadly mask most form elements as well as things like search bars and login fields.
• Mask <textarea> elements. Websites often use the textarea tag to provide multi-line text inputs for things like comments or reviews. The rule will mask all text within the textarea.
• Mask <select> elements. This tag is used to create drop-down lists. This rule will apply to all options presented to the user within the list.
• Mask [contenteditable]. This attribute, although not frequently used, specifies whether the content of an element is editable by end users. By masking elements with this attribute, we can prevent unintended capturing of these elements.
• Exclude <input type="radio">. Radio buttons are common form elements we exclude to prevent capturing text and interactions that could reveal unnecessary information to a viewer familiar with your site.
• Exclude <input type="checkbox">. Similar to radio buttons, we exclude checkbox inputs to prevent viewers familiar with your site from seeing potentially sensitive information.

To find Form Privacy rules in your account:

1. Click your account name in the top left.
2. Click Settings.
3. Under Data Capture and Privacy, click Privacy.
4. Click the Element Privacy Rules tab.
5. Click Form Privacy Rules.

Note: if your account is using the Private by Default privacy mode, the Form Privacy section may not be visible. However, Form Privacy can be accessible if it was enabled before Private by Default.

Admins can click Opt out of Form Privacy Rules to disable Form Privacy selectors and can click Opt in to Form Privacy Rules to enable them.

Note that you can still analyze engagement with masked elements in Fullstory. Simply search for the CSS Selector of the element or create an Element to identify it using a name of your choosing. 

Unmask specific form elements via exception selectors

Admins in your account can unmask specific elements that don't pose a privacy risk by creating exceptions to the default rules. The approach allows all other form elements to remain private by default—including any form elements added later.

One example of an exception would be a search bar. These types of inputs may not present a privacy risk and can provide valuable insights into end user actions. If your search bar has a class of search-bar, an Admin can add an exception for that.

1. On the Privacy settings page, click Element Privacy Rules, then Form Privacy Rules.
2. Click the Selector for which you want to add an exception selector. In this example, we'll choose input.
3. Check the Add exception selectors checkbox at the bottom of the form that opens.
4. Add the CSS selector that will serve as the exception. In this example, we'll add .search-bar.
5. Click Save.

This exception would unmask inputs with the selector .search-bar for all future sessions. This approach greatly minimizes risk by preventing all other input elements (even ones added in the future) from being captured. By preventing unwanted data from being captured, you're able to deploy faster and with less worry. Note that you can add multiple exceptions to a privacy rule.

What else should I consider when using Form Privacy?

Input fields are the most common places for personal information to appear on a website. Form Privacy alone does not guarantee that unwanted data is not captured. It's important that unwanted information that may appear outside of form elements are manually masked or excluded. Common examples include usernames or email addresses, avatar images, payment and shipping confirmation pages, and username or password reset flows.