They take in ways that breach your agreement.
Observed behavior violates contractual commitments. The vendor's DPA prohibits subprocessing, but their scripts load fourth-party code. The contract says no cross-domain tracking, but pixel syncs are detected. The agreement is fiction.
How This Escalates BTI-C Findings
Transforms any BTI-C finding into a contractual breach. Technical evidence becomes legal evidence when mapped against specific DPA or contract provisions.
Related Advisories
No published advisories reference this code yet.
Investigations are ongoing.
Blackout uses security frameworks to protect AGAINST vendors, not FOR them. We do not notify vendors. We do not provide remediation windows. If you're using a vendor flagged by this code, the advisory is your evidence.
Permanent URL: deployblackout.com/bti/codes/X11