Pseudoanonymization of Sensitive Data

You can prevent the collection of various pieces of information by the SysTrack agent.

This document explains how to configure pseudoanonymization in SysTrack to protect the following sensitive information:

  • User Names
  • Website Details
  • User Information and Active Directory Details

User Names

Pseudoanonymization Options

SysTrack supports three pseudoanonymization options for user names:

Value Description
1 Replace user name with Terminal ID.
2 Replace user name with MD5 hash (no lookup). This is irreversible.
3 Replace user name with MD5 hash (with lookup). Allows mapping back to the original username if needed.

Configuration

  1. Go to Configure > Roles.

  2. Click the lock icon in the upper-right corner to obtain the Configure lock.

  3. Select the role.

  4. From the Additional Settings list, select Application Management.

  5. In the Replace user name field, enter:

    • 1 for Terminal ID

    • 2 for MD5 hash (no lookup)

    • 3 for MD5 hash (with lookup)

  6. Click Save Changes.

NOTE: Make sure this role is included within the configuration assigned to the endpoints that need the pseudoanonymization.

EXAMPLE: The screenshot shows the option for MD5 hash with no lookup selected:
Application Management preview
As a result, usernames are replaced with an MD5 value:
MD5 value

Website Details

By default, SysTrack collects:

  • User site visits

  • Base site URL (e.g., http://website.com)

  • Full URL (e.g., http://website.com/page1)

  • Page title

  • Load time

  • Time spent on page and in focus

  • PID of browser tab/session

  • Application invoking browser

Pseudoanonymization Options

Based on your preferences or legal requirements, you can:

  • Disable all web tracking by turning off the plugin.

  • Limit collection to a subset of URLs using the Web Tracking List.

Configuration

  1. Go to Configure > Roles.

  2. Click the lock icon in the upper-right corner to obtain the Configure lock.

  3. Select the role.

  4. From the Additional Settings list, select Web Management.

  5. Configure tracking:

    • To disable all tracking, clear all checkboxes and remove URLs.

    • To limit tracking, specify allowed URLs in the Web Tracking List. For details, see Web Management.

  6. Click Save Changes.

User Information and Active Directory Details

By default, SysTrack collects:

  • Local user information

  • Organizational unit (Active Directory) details, including:

    • Full name

    • Country code

    • Location

    • Department

    • AD manager

    • Description fields

Pseudoanonymization Options

You can prevent the collection of local user information, Active Directory details, or both.

Configuration

  1. Go to Configure > Roles.

  2. Click the lock icon in the upper-right corner to obtain the Configure lock.

  3. Select the role.

  4. From the Additional Settings list, select Privacy.

  5. In the User Collection group, clear the following checkboxes:

    • Collect User Info to disable collection of local user information.

    • Collect Users Organizational Unit to disable collection of Active Directory details.

  6. Click Save Changes.