Skip to main content
Skip table of contents

Data Security

Germain UX provides a dynamic data security mechanism that controls which users or teams can view specific pieces of collected data ("facts") or session replays. This ensures sensitive information is only accessible to authorized Germain users, supporting compliance and privacy policies.

Key Capabilities

  • Granular control: Each data point (or "fact") can be configured for visibility.

  • Custom access rules: Organizations can inject custom security scripts to define who can view what, based on application logic.

  • Dynamic enforcement: Access control is applied in real-time as data is collected.

How It Works

Session Replay Security

  • Access to recorded user sessions is restricted based on the context of the activity (e.g., type of financial transaction).

  • Rules are added via a custom RUM JS init script to define which teams can access which session types.

Fact-Level Security

  • Specific data types (e.g., UxConsoleEvent) can be protected using logic in the factProcessor.

  • Visibility is assigned using team-based access expressions (e.g., t0, t1, t0 || t1).

Real-World Example – Financial Organization

  • Team A sees only sessions related to Stock ABC.

  • Team B sees only sessions related to Stock DEF.

  • The script enforces access rights based on the user's role in the monitored application (Admin, Business user, etc.).

Custom Logic Examples

  • Use settings.application.metadataProviders['access'] for full replay access control.

  • Use settings.application.factProcessor to secure individual fact types.

  • Access expressions like t0 || t1 or t1 && t2 allow flexible team-based permissions.

Service: Management

Feature Availability: 2021.2 or later

JavaScript errors detected

Please note, these errors can depend on your browser setup.

If this problem persists, please contact our support.

Contact Support Close