Search

Masked Certificates

Ayesha Akhtar
Ayesha Akhtar
  • Updated

Feature Snapshot

Summary:
Masked Certificates are specialized TrustedForm certificates that document consumer consent while intentionally concealing sensitive information such as the originating website’s URL, session replay, and event logs.

Key Benefits:

  • Protects the lead source’s identity by hiding the original page details.
  • Enhances privacy by redacting sensitive session and source data.
  • Documents basic information about a lead event

Typical Use Cases:

  • Lead resellers who need to shield the source of their leads while sharing a TrustedForm certificate with their buyers.

How the Masked Certificates work

Masked Certificates are generated during the TrustedForm retention process. When a standard certificate is retained, a masked version is created. This masked certificate encrypts the page URL and hides the session replay / event log. This masked certificate can still be used to retrieve data about the lead or assess specific compliance requirements but it often will not be able to serve as an adequate record of lead generation on its own. If a lead buyer is given a masked certificate they will have to request the standard certificate from their seller in the event of a complaint/litigation.

Step‑by‑Step Instructions

  1. Issue a Regular Certificate:
    Deploy the TrustedForm Certify process on your lead generation page to generate a standard certificate.
  2. Capture the Masked Certificate URL:
    During the retention process, use the API documentation to locate the masked_cert_url which represents the masked certificate.
  3. Distribute the Masked Certificate:
    Provide the masked certificate URL to your lead buyers with the rest of the lead data.

Expected Result:
Buyers receive a masked certificate URL that displays basic information about the lead event, but the original page URL, session replay, and event log are removed to avoid revealing the source of the lead.

Validation & Monitoring (optional)

  • Test the Setup: Retain a certificate and confirm that the API response includes a valid masked_cert_url. Retain the masked certificate and confirm that the unmasked page URL, session replay and event log are not shown.
  • Where to Monitor?: Lead buyers can monitor the TrustedForm dashboard for details on the number of masked certificates they are retaining.

Best Practices

  • Don’t use masked certificate unless the importance of concealing the source outweighs the need for transparency and following best practices for compliance.
  • Clearly communicate to lead buyers and internal teams when masked certificates are being distributed and create a process to provide a Share URL for the standard certifciate to buyers when necessary.
  • Use TrustedForm Insights to determine if certificates are masked before retaining them. Reject leads with masked certificate if you are business is risk adverse.
  • Use the TrustedForm Dashboard to monitor which vendors are distributing masked certificates and request changes as needed.

Frequently Asked Questions (FAQ)

Q: What is a Masked Certificate?
A: A Masked Certificate is a TrustedForm certificate that functions like a standard certificate, but it conceals sensitive information—such as the original page URL, session replay and event log—to protect proprietary lead source details.

Q: Can I use masked certificates in the same way as unmasked certificates?
A: Yes, you can use them the same way but they offer inferior evidence of lead events in the event of litigation or complaints. In those situations request the standard certificate be shared with you by the lead seller.

Q: Why should I use masked certificates instead of full certificates?
A: Generally, you shouldn’t. Only use masked certificates when your lead sources have been throughly vetted and revealing them could negatively impact your business

Q: What are the risks of relying solely on masked certificates?
A: Relying only on masked certificates may mean that, in the event of a consumer complaint or legal dispute, you might not have immediate access to full session details (such as the complete page URL or session replay). It is advisable to confirm with your seller that full certificates can be retrieved when necessary for a comprehensive audit.

9. Glossary

Term Definition
Masked Certificate A TrustedForm certificate that records consumer consent while intentionally concealing sensitive fields such as the webpage URL and session replay.
TrustedForm Retain The process of storing a TrustedForm certificate in your account for long-term evidence of consumer consent.
Insights A TrustedForm product that provides non-sensitive metadata from a certificate, such as lead age, browser type, and masked domain information.
Session Replay A visual playback of the consumer’s interaction with the form, which is suppressed in Masked Certificates to protect sensitive data.

Was this article helpful?

0 out of 0 found this helpful

Comments

0 comments

Please sign in to leave a comment.