What are TrustedForm Masked Certificates?
Masked Certificates are exact copies of full certificates, except the source information (page URL, screenshot and snapshot) have been masked. They still contain essential information about the origin of the lead, so lead buyers can independently verify lead authenticity and compliance with either full or masked certificates.
How can I provide masked certificates to my lead buyers?
This feature is only available to paid account holders. When a paid account holder claims a “full” TrustedForm Certificate they will receive a “Masked” Certificate URL as one of the data elements in the response. Masked Certificates have their own unique Certificate ID that is separate and distinct from the original “full” Certificate ID. Simply pass the Masked Certificate to your lead buyer instead of the full Certificate.
Does this feature require a different TrustedForm script?
No, the script is the same. The script only issues full certificates. We utilize a single universal script that is publicly available on our website. You don’t have to register for an account with us in order to use the script.
How do I implement?
A masked certificate is generated for every claim. You can obtain the URL to it from the
masked_cert_url field of the response JSON when you claim a certificate. Capture this value and store it with the lead data. You can then send it to any buyer instead of the original full certificate.
My site utilizes a shared lead model (same lead sold to multiple buyers). Can I share the source with some buyers and hide it from others?
Yes. You must first claim the certificate via your TrustedForm account. You will then capture the “masked” certificate URL from our API. For the buyers for whom you want to reveal source information, you will send them the “full” TrustedForm Certificate URL. For the buyers for who you want to hide the source information, you will send them the “masked” certificate URL.
How can I tell if I have received a Masked TrustedForm Certificate from a lead seller?
You can tell by visually inspecting the Certificate. A masked Certificate will say “Masked Certificate of Authenticity” at the top. The Page URL will be masked and the screenshot and snapshot will be unavailable. You can also determine programmatically at the time of claim by checking the “masked” field in the JSON response. The claim response will indicate whether the Cert you are claiming is masked.
I received a “masked” certificate from a lead provider, can I still scan the page snapshot to verify my required TCPA language was present on the page?
Yes. The page scan feature still works.
My lead vendor gives me “masked” certificates. If I get a consumer complaint and need to see the ‘full” certificate, what do I do?
You will have to contact your lead vendor to request the “full” certificate. Send the lead vendor the “masked” certificate and they will be able to access the corresponding “full” certificate in their account. Your lead vendor must be storing their Certificates in their TrustedForm account for this to work. If they have allowed their Certificates to expire, they can no longer be accessed.
If I send a lead buyer a masked certificate, and later I need to provide them the full certificate how do I find the full certificate based on the masked certificate?
If you hold the full certificate in your account, and view a masked certificate (while logged into your account), it will reveal the corresponding full Certificate.
My lead vendor gives me “masked” certificates. How can I be sure that my lead vendors are storing the original “full” certificates in their account in case they are needed in the future?
This is best accomplished with a legal agreement between you and your lead vendor. Simply require them to store the “full” certificates for the time period you need. Our storage costs are very reasonable.
I will only accept “full” certificates from my lead vendors, how do I block “masked” certificates?
Whenever you claim a certificate via the TrustedForm API, it will respond back with a flag that indicates whether or not this certificate is “masked”. When “masked” = true, you simply need to reject that lead. This can be easily configured using rules in your LeadConduit account.
Will “masked” certificates generated for leads originating from the same site have the same masked URL?
Yes. This allows a buyer to identify leads generated on the same site without revealing the real URL of that site.
What does a Masked Certificate Look Like?
Here is what a masked certificate looks like:
And here's what the video replay page looks like: