How This Briefing Works
This report opens with key findings, then maps the gaps between what AB Tasty discloses and what BLACKOUT observed at runtime. From there: what it means for your organization, what to do about it, and the detection data and evidence underneath.
Key Findings
Analysis pending. Findings will appear here once intelligence collection is complete.
Disclosure Gaps
Claims vs. Observed Behavior
1 gaps
pending
UNKNOWN
They Claim
“Awaiting scanner verification”
Observed Behavior
Runtime behavior not yet observed by BLACKOUT scanner
Customer Impact
What This Means For You
Organizations deploying AB Tasty face measurement distortion from A/B test and personalization fragmentation, compounded by EmotionsAI's emotional segmentation layer that adds another variable to the attribution equation. The 250+ behavioral dimensions collected by Universal Collect create a substantial data footprint that may overlap with or conflict with other analytics implementations. The synchronous, early-loading tag architecture means AB Tasty executes before most other page resources, maximizing its influence on page performance and creating a critical dependency. If AB Tasty's CDN experiences latency or outages, page rendering is directly impacted. The arbitrary JavaScript injection capability creates an attack surface where a compromised AB Tasty account could deploy malicious code across the entire site. EmotionsAI's psychological profiling of visitors may create compliance exposure if privacy notices do not specifically disclose emotional classification as a form of data processing.
Recommended Actions
What To Do About It
Role-specific actions based on observed behavior
Recommended Actions for AB Tasty
- →Review whether your privacy policy specifically discloses EmotionsAI emotional profiling as a form of data processing distinct from standard A/B testing analytics.
- →Audit the 250+ dimensions collected by Universal Collect to understand what behavioral data AB Tasty captures and whether it duplicates other analytics implementations.
- →Assess the performance impact of AB Tasty's synchronous tag loading on page render times and establish monitoring for CDN latency.
- →Map all data flows through the Universal Data Connector API to understand where behavioral dimensions and emotional segments propagate to connected CDPs, DMPs, and CRMs.
- →Implement Content Security Policy headers that constrain AB Tasty's JavaScript injection capabilities to only approved campaign types.
Negotiation Leverage
- →Leverage: AB Tasty's European headquarters and GDPR compliance positioning are core selling points. Hold the vendor to these claims with contractual specificity, particularly around EmotionsAI. Key questions: (1) What specific data points feed the EmotionsAI emotional classification, and does this processing constitute automated profiling under GDPR Article 22? (2) What are the 250+ dimensions collected by Universal Collect, and which can be disabled without impacting core A/B testing functionality? (3) What data is transmitted to AB Tasty servers versus processed client-side? (4) Does AB Tasty retain or use collected behavioral data or emotional classifications for product improvement, model training, or benchmarking across customers? Protections to negotiate: explicit data processing agreement covering EmotionsAI as a distinct processing activity, granular control over which Universal Collect dimensions are active, data deletion SLAs upon contract termination, written confirmation that emotional profiling data is not used for cross-customer model training, and performance SLAs for the synchronous tag to protect page load times.
IOC Manifest
IOC Manifest
215 INDICATORS
Indicators of compromise across 5 categories. Use for detection rules, CSP policies, or Pi-hole blocklists.
TRACK
*try.abtasty.com/*.js*
Tracking script
TRACK
*www.abtasty.com/wp-includes/js/jquery/jquery.js*
Tracking script
TRACK
*www.abtasty.com/wp-content/plugins/wp-swiper/gutenberg/js/frontend_block.js*
Tracking script
TRACK
*www.abtasty.com/wp-includes/js/jquery/jquery-migrate.js*
Tracking script
TRACK
*www.abtasty.com/wp-content/themes/abtasty/javascript/populate-iframe-src.js*
Tracking script
TRACK
*www.abtasty.com/wp-content/themes/abtasty/javascript/sliding-sections.js*
Tracking script
TRACK
*www.abtasty.com/wp-content/plugins/sticky-menu-or-anything-on-scroll/assets/js/jq-sticky-anything.js*
Tracking script
TRACK
*www.abtasty.com/wp-content/themes/abtasty/javascript/attribution.js*
Tracking script
TRACK
*www.abtasty.com/wp-content/themes/abtasty/javascript/blocks/back-top.js*
Tracking script
TRACK
*www.abtasty.com/wp-content/themes/abtasty/javascript/header-event.js*
Tracking script
TRACK
*www.abtasty.com/wp-content/themes/abtasty/javascript/global.js*
Tracking script
TRACK
*www.abtasty.com/wp-content/themes/abtasty/javascript/video-block.js*
Tracking script
TRACK
*www.abtasty.com/wp-content/themes/abtasty/javascript/iframeResizer.js*
Tracking script
TRACK
*www.abtasty.com/wp-content/themes/abtasty/javascript/tableOfContent.js*
Tracking script
TRACK
*www.abtasty.com/wp-content/plugins/wp-swiper/public/js/swiper-bundle.js*
Tracking script
TRACK
*try.abtasty.com/shared/commons.*.js*
Tracking script
TRACK
*try.abtasty.com/shared/me.*.js*
Tracking script
TRACK
*try.abtasty.com/*/main.*.js*
Tracking script
TRACK
*www.abtasty.com/wp-content/plugins/geoip-detect/js/dist/frontend_full.js*
Tracking script
TRACK
*www.abtasty.com/wp-content/plugins/gutenberg-block-generator/assets/number-animation-inline.js*
Tracking script
TRACK
*www.abtasty.com/wp-includes/js/hoverIntent.js*
Tracking script
TRACK
*try.abtasty.com/shared/analytics.*.js*
Tracking script
TRACK
*www.abtasty.com/wp-content/plugins/gutenberg-block-generator/assets/parallax.js*
Tracking script
TRACK
*www.abtasty.com/wp-content/plugins/gutenberg-block-generator/assets/has-top-radius-spacing.js*
Tracking script
TRACK
*www.abtasty.com/wp-content/plugins/megamenu/js/maxmegamenu.js*
Tracking script
TRACK
*try.abtasty.com/*/*.*.json*
Tracking script
TRACK
*www.abtasty.com/wp-content/themes/abtasty/javascript/motion.bundle.js*
Tracking script
TRACK
*www.abtasty.com/wp-content/plugins/gutenberg-block-generator/dist/popup-manager.js*
Tracking script
TRACK
*www.abtasty.com/wp-content/plugins/sliderpro/public/assets/js/jquery.sliderPro.js*
Tracking script
TRACK
*www.abtasty.com/wp-content/themes/twentytwenty/assets/js/index.js*
Tracking script
TRACK
*www.abtasty.com/wp-content/plugins/gutenberg-block-generator/dist/blocks/slider-logos/viewScript.js*
Tracking script
TRACK
*www.abtasty.com/wp-content/plugins/gutenberg-block-generator/dist/blocks/bullet-point/viewScript.js*
Tracking script
TRACK
*www.abtasty.com/wp-content/plugins/gutenberg-block-generator/dist/blocks/slider-testimony/viewScript.js*
Tracking script
TRACK
*www.abtasty.com/wp-content/plugins/gutenberg-block-generator/dist/blocks/case-studies/viewScript.js*
Tracking script
TRACK
*www.abtasty.com/wp-content/plugins/gutenberg-block-generator/dist/blocks/image-and-dropdown/viewScript.js*
Tracking script
TRACK
*www.abtasty.com/wp-content/plugins/sticky-menu-or-anything-on-scroll/assets/js/stickThis.js*
Tracking script
TRACK
*www.abtasty.com/wp-includes/js/wp-emoji-release.js*
Tracking script
TRACK
www.abtasty.com/wp-includes/js/jquery/jquery.min.js
Auto-extracted from scan
TRACK
www.abtasty.com/wp-includes/js/jquery/jquery-migrate.min.js
Auto-extracted from scan
TRACK
www.abtasty.com/wp-content/plugins/sticky-menu-or-anything-on-scroll/assets/js/jq-sticky-anything.min.js
Auto-extracted from scan
TRACK
www.abtasty.com/wp-content/plugins/wp-swiper/public/js/swiper-bundle.min.js
Auto-extracted from scan
TRACK
www.abtasty.com/wp-content/plugins/wp-swiper/gutenberg/js/frontend_block.js
Auto-extracted from scan
TRACK
www.abtasty.com/wp-content/themes/abtasty/javascript/iframeResizer.min.js
Auto-extracted from scan
TRACK
www.abtasty.com/wp-content/themes/abtasty/javascript/attribution.js
Auto-extracted from scan
TRACK
www.abtasty.com/wp-content/themes/abtasty/javascript/populate-iframe-src.js
Auto-extracted from scan
TRACK
www.abtasty.com/wp-content/themes/abtasty/javascript/global.js
Auto-extracted from scan
TRACK
www.abtasty.com/wp-content/themes/abtasty/javascript/sliding-sections.js
Auto-extracted from scan
TRACK
www.abtasty.com/wp-content/themes/abtasty/javascript/video-block.js
Auto-extracted from scan
TRACK
www.abtasty.com/wp-content/themes/abtasty/javascript/blocks/back-top.js
Auto-extracted from scan
TRACK
www.abtasty.com/wp-content/themes/abtasty/javascript/header-event.js
Auto-extracted from scan
TRACK
www.abtasty.com/wp-content/themes/abtasty/javascript/tableOfContent.js
Auto-extracted from scan
TRACK
try.abtasty.com/35cb99569fe43be458cbc970eb95b71e.js
Auto-extracted from scan
TRACK
www.abtasty.com/wp-content/themes/twentytwenty/assets/js/index.js
Auto-extracted from scan
TRACK
www.abtasty.com/wp-content/plugins/geoip-detect/js/dist/frontend_full.js
Auto-extracted from scan
TRACK
www.abtasty.com/wp-content/plugins/sticky-menu-or-anything-on-scroll/assets/js/stickThis.js
Auto-extracted from scan
TRACK
www.abtasty.com/wp-content/plugins/gutenberg-block-generator/assets/number-animation-inline.js
Auto-extracted from scan
TRACK
www.abtasty.com/wp-content/plugins/gutenberg-block-generator/assets/parallax.js
Auto-extracted from scan
TRACK
www.abtasty.com/wp-content/plugins/gutenberg-block-generator/assets/has-top-radius-spacing.js
Auto-extracted from scan
TRACK
www.abtasty.com/wp-content/plugins/gutenberg-block-generator/dist/popup-manager.js
Auto-extracted from scan
TRACK
www.abtasty.com/wp-content/themes/abtasty/javascript/motion.bundle.js
Auto-extracted from scan
TRACK
www.abtasty.com/wp-includes/js/hoverIntent.min.js
Auto-extracted from scan
TRACK
www.abtasty.com/wp-content/plugins/megamenu/js/maxmegamenu.js
Auto-extracted from scan
TRACK
www.abtasty.com/wp-content/plugins/gutenberg-block-generator/dist/blocks/slider-logos/viewScript.js
Auto-extracted from scan
TRACK
www.abtasty.com/wp-content/plugins/gutenberg-block-generator/dist/blocks/bullet-point/viewScript.js
Auto-extracted from scan
TRACK
www.abtasty.com/wp-content/plugins/gutenberg-block-generator/dist/blocks/slider-testimony/viewScript.js
Auto-extracted from scan
TRACK
www.abtasty.com/wp-content/plugins/gutenberg-block-generator/dist/blocks/image-and-dropdown/viewScript.js
Auto-extracted from scan
TRACK
www.abtasty.com/wp-content/plugins/gutenberg-block-generator/dist/blocks/case-studies/viewScript.js
Auto-extracted from scan
TRACK
www.abtasty.com/wp-content/plugins/sliderpro/public/assets/js/jquery.sliderPro.min.js
Auto-extracted from scan
TRACK
try.abtasty.com/shared/commons.89ad4538f4af1d83f597.js
Auto-extracted from scan
TRACK
try.abtasty.com/35cb99569fe43be458cbc970eb95b71e/main.0f7a471d0f452b869542.js
Auto-extracted from scan
TRACK
try.abtasty.com/shared/me.8c29db3dcf0b22fb34da.js
Auto-extracted from scan
TRACK
try.abtasty.com/shared/analytics.5654d614e26b0d963bf4.js
Auto-extracted from scan
TRACK
www.abtasty.com/wp-includes/js/wp-emoji-release.min.js
Auto-extracted from scan
Ecosystem
Ecosystem & Supply Chain
AB Tasty integrates with CDPs (Tealium AudienceStream for importing audience segments), DMPs, CRMs, and data warehouses through its Universal Data Connector API, which accepts segmentation data from virtually any external source. The Shopify app integration enables eCommerce-specific experimentation. The platform supports integration with analytics tools for experiment result analysis and conversion tracking. EmotionsAI is embedded directly in the AB Tasty tag, requiring no separate integration. AB Tasty's European headquarters (Paris) and GDPR/CCPA compliance positioning place it within the privacy-conscious European martech ecosystem. The platform competes directly with Optimizely, Dynamic Yield, and Kameleoon in the A/B testing and personalization space, with EmotionsAI as a key differentiator in the emotional intelligence segment.
Evidence
Evidence Artifacts
Artifacts collected during analysis, available with evidence-tier access.
HAR Capture
Complete network capture with all requests and responses
IOC Manifest
215 detection signatures across scripts, domains, cookies, and network endpoints