QA mode · Tier:PUBLIC(override via ?tier=paid | premium)
← All Vendors
session_replay
Datadog RUM

Datadog RUM

96% pre-consent tracking rate on datadoghq.com — 42+ third-party trackers fire before consent while disclosing only 12 infrastructure providers as subprocessors. Visitor identification platforms (Leadfeeder, Albacross, Dealfront, IDVisitors, Midbound, Vector) and ABM tools (Demandbase, Influ2) operate undisclosed.

97 IOCs observed7 detections86% pre-consent7 sites
90
Vendor Risk Score
Tier: HOSTILE
Observation Coverage

BLACKOUT observes runtime behavior in the browser. This dossier reflects browser-side execution, which is one of five vendor data-egress classes. Server-to-server transfers, backend integrations, and offline data flows are outside this observation boundary.

BLACKOUT observes runtime behavior and cites the regulations that address that behavior pattern. Legal determinations are the customer's counsel's call.

How This Briefing Works

This dossier opens with key findings, then maps the gap between what Datadog RUM discloses and what BLACKOUT observed at runtime. From there: what it means for your organization, what to do about it, and the detection evidence underneath. BLACKOUT observes runtime browser behavior and cites the regulations that address each pattern — legal determinations are your counsel's call.

Key Findings

At a Glance

Detections
7

across 7 sites

Pre-Consent Rate
86%

vendor fires before consent

Disclosure Gaps
3

1 CRIT · 2 HIGH

Claims-vs-Reality Classified
BTI-X01BTI-X02BTI-X05
Summary

Briefing

Datadog RUM is a Real User Monitoring product from Datadog, a publicly traded observability platform (NYSE: DDOG) headquartered in New York. While Datadog maintains extensive compliance certifications including SOC2 Type II, ISO 27001, GDPR, and CCPA, their own website demonstrates a significant gap between stated compliance posture and actual behavior. Runtime analysis detected 42+ third-party trackers loading pre-consent on datadoghq.com at a 96% rate, while their subprocessor disclosure lists only 12 infrastructure providers. This represents a material disclosure gap where advertising networks, visitor identification platforms, and marketing automation tools operate undisclosed on their corporate properties.

Customer Impact

What This Means For You

If Datadog RUM monitors your application, you are trusting an observability platform whose own website fires 42+ trackers pre-consent at a 96% rate while disclosing only 12 infrastructure subprocessors. Under GDPR Art 28, this material disclosure gap means you cannot verify the full data processing chain. Visitor identification platforms (Leadfeeder, Albacross, Dealfront, IDVisitors, Midbound, Vector) and ABM tools (Demandbase, Influ2) operating undisclosed on datadoghq.com suggest aggressive visitor deanonymization practices. RUM session replay data captures detailed user interactions — combined with Datadog's other products, this creates potential for cross-correlation of identity and behavioral data. Their SOC2 Type II and ISO 27001 certifications cover infrastructure, not the marketing surveillance stack on their corporate site.

Collapse Engine

Risk Channel Breakdown

Oracle
Truth Collapse
40

Datadog RUM captures detailed session data including user interactions, page performance, and errors. When combined with the 42+ undisclosed third-party trackers on their own site, measurement integrity is compromised - the same data may be simultaneously flowing to advertising networks (Criteo, DoubleClick, Meta) and visitor identification platforms (Demandbase, Leadfeeder, Albacross) that Datadog does not disclose.

Broker
Control Collapse
100

The presence of ABM platforms (Demandbase, Influ2, CaliberMind), visitor identification vendors (Leadfeeder, Albacross, Dealfront, IDVisitors, Midbound, Vector), and advertising networks pre-consent means visitor demand signals are being shared with competitors or third parties who could exploit this intelligence.

Reaper
Safety Collapse
0

Datadog RUM itself is a legitimate monitoring tool, but the corporate website attack surface is substantial - 42+ third-party scripts loading pre-consent creates significant supply chain risk. Any compromise of these vendors could affect Datadog site visitors.

Counselor
Legitimacy Collapse
100

The 96% pre-consent tracking rate directly contradicts GDPR Article 6 (lawful basis) and ePrivacy Directive requirements. Claims of GDPR/CCPA compliance on the Trust Center while operating this pre-consent tracking regime creates regulatory exposure and consent validity questions for enterprises using Datadog.

BTI Codes

Threat Indicators

Runtime-observed (BTI-C)

BTI-C01
Defeat Device

Evasion infrastructure, auditor bypass

BTI-C06
Behavioral Biometrics

Keystroke/mouse tracking

BTI-C07
Session Recording

Full session replay

BTI-C08
Cross-Domain Sync

Identity stitching

BTI-C09
Consent Bypass

Ignoring CMP signals

BTI-C10
Fingerprinting

Device identification

BTI-C14
Identity Resolution

PII deanonymization

BTI-C15
Tag Manager

Container/loader (neutral)

Claims-vs-Reality (BTI-X)

BTI-X01
Undisclosed Party

Not in privacy policy

BTI-X02
Undisclosed Sharing

Hidden data recipients

BTI-X05
Compliance Claim Mismatch

False certification claims

3
BTI Consequences Identified

Per-code narrative explanations of what each detected behavior means for your organization

Available in VIDB Subscription

Per-code evidence with full attribution chain, severity rankings, and consequence narratives See pricing →

Disclosure Gaps

Claims vs. Reality

3
Gaps Observed
1 CRITICAL2 HIGH

BLACKOUT analyzed Datadog RUM's public claims against observed runtime behavior and identified 3 contradictions.

BTI-X01BTI-X02BTI-X05
Featured Gap
Consent Architecture
CRITICAL
They Claim

"GDPR compliant per Trust Center"

BLACKOUT Observed

96% of detected trackers load before consent on datadoghq.com

2 more gaps — with regulatory citations and evidence pointers — available with subscription.

Available in VIDB Subscription

Full claim-vs-reality gap analysis with claim text, observed behavior, severity, regulatory citations (GDPR, CCPA, ePrivacy), and evidence pointers per gap See pricing →

Recommended Actions

What To Do

Recommended Actions
10

5 for current users · 5 for evaluators

Negotiation Leverage
5

contractual leverage points

Available in VIDB Subscription

Role-specific actions (security / legal / marketing / procurement), full negotiation brief with contractual language, and BTI-code-specific consequences See pricing →

Ecosystem

Supply Chain & Pairings

Subprocessor Disclosure Gap
2undisclosed

Claims 12, observed 14

Available in VIDB Subscription

Full supply-chain mapping (loads / loaded-by lists with vendor identities) and the undisclosed-subprocessor list with observation evidence See pricing →

Profile: datadog-rumFirst Seen: 2026-01-22Last Updated: 2026-02-28