Privacy & Security

Audit metadata

The fields recorded for each detection, designed to be useful for administrators while excluding sensitive content.

Recorded fields

A detection record is metadata about what happened — not the content involved.

FieldDescription
Detection categoryWhich category matched, e.g. SSN, credit card, or API key.
Action and outcomeThe policy action and user outcome, such as warned, blocked, redacted, canceled, or sent with a reason.
SeverityThe audit severity assigned to the event.
SiteThe site hostname or domain where the event occurred, without full URL paths, query strings, or URL hashes.
Device informationWhich enrolled device and extension installation the detection occurred on.
Policy informationThe policy source and version that produced the decision.
Attachment metadataCounts, file types, and skip reasons for supported attachment scans.
Justification metadataWhether a reason was provided and, when required, locally redacted justification text.
TimestampWhen the detection happened.

Deliberately excluded

Audit metadata is designed to exclude prompt text, pasted content, attachment contents, full sensitive values, full URLs, query strings, URL hashes, and raw justification text. The category is recorded; the underlying scanned value is not.

Why this matters

Administrators get the signal they need to understand and enforce policy without ever seeing the sensitive content itself. If a policy requires a reason, the extension may upload locally redacted justification text for auditability.