Lemlist | Vendor Intelligence

How This Briefing Works

This report opens with key findings, then maps the gaps between what Lemlist discloses and what BLACKOUT observed at runtime. From there: what it means for your organization, what to do about it, and the detection data and evidence underneath.

Key Findings

6 detections across 4 sites50% pre-consent activity

CRITICAL

Pre-Consent Activity

Lemlist was observed loading and executing before user consent was obtained on 50% of sites where it was detected.

GDPRePrivacy

Disclosure Gaps

Claims vs. Observed Behavior

1 gaps

marketing_surveillance

HIGH

They Claim

“Unknown - requires claims extraction”

Observed Behavior

C06+C07+C09+C13 detected - comprehensive marketing surveillance platform

Customer Impact

What This Means For You

Marketing teams using Lemlist inherit multi-vector surveillance liability. Behavioral and recording capabilities combined with pre-consent execution create compounding compliance exposure. Email campaign intelligence derived from non-consented comprehensive tracking produces legally questionable attribution. Session recording of email recipients creates additional consent and disclosure requirements.

Recommended Actions

What To Do About It

Role-specific actions based on observed behavior

If You Use Lemlist

→Audit Lemlist behavioral and recording scope - catalog surveillance capabilities deployed
→Verify session recording extent on landing pages - full replay vs aggregated metrics
→Enforce consent gate before Lemlist tracking initialization
→Map persistence mechanisms - cookies, local storage, fingerprinting techniques
→Document consent timestamp vs Lemlist execution for compliance records

If You're Evaluating Lemlist

→Request Lemlist technical documentation of behavioral, recording, and persistence capabilities
→Evaluate marketing automation platforms without session recording
→Consider basic email tracking (opens/clicks) instead of comprehensive behavioral surveillance
→Investigate consent-aware marketing automation alternatives

Negotiation Leverage

→Lemlist deploys C06+C07+C09+C13 - vendor must explain comprehensive marketing surveillance
→Demand complete disclosure of behavioral biometrics, session recording, and persistence mechanisms
→Require consent-first operation - no pre-consent marketing tracking
→Negotiate removal of session recording if not contractually specified
→Establish liability terms for behavioral surveillance and consent violations

Runtime Detections

4 BTI-C CODES

BLACKOUT observed this vendor's JavaScript executing in a live browser and classified each hostile behavior using our BTI-C (Behavioral Threat Intelligence — Capability) taxonomy. These are not theoretical risks — each code below was triggered by something we watched this vendor's code actually do.

BTI-C06Behavioral Biometrics

Keystroke/mouse tracking

BTI-C07Session Recording

Full session replay

BTI-C09Consent Bypass

Ignoring CMP signals

BTI-C13Persistence Mechanisms

Long-lived identifiers

IOC Manifest

60 INDICATORS

Indicators of compromise across 4 categories. Use for detection rules, CSP policies, or Pi-hole blocklists.

TRACK

*www.lemlist.com/_next/static/chunks/*.js*

Tracking script

TRACK

*www.lemlist.com/_next/static/8lcAzLZXiSFoHZ0iTdHch/_ssgManifest.js*

Tracking script

TRACK

*www.lemlist.com/_next/static/chunks/turbopack-*.js*

Tracking script

TRACK

*www.lemlist.com/_next/static/8lcAzLZXiSFoHZ0iTdHch/_buildManifest.js*

Tracking script

TRACK

*www.lemlist.com/_next/static/8lcAzLZXiSFoHZ0iTdHch/_clientMiddlewareManifest.json*

Tracking script

EXFIL

*app.lemlist.com/api/visitors/tracking*

Data collection endpoint

TRACK

www.lemlist.com/_next/static/chunks/2e969efbd77cf85d.js

Auto-extracted from scan

TRACK

www.lemlist.com/_next/static/chunks/d172c0d97cf6b459.js

Auto-extracted from scan

TRACK

www.lemlist.com/_next/static/chunks/0ef481e3f30e49ee.js

Auto-extracted from scan

TRACK

www.lemlist.com/_next/static/chunks/a4b7405f617e4f12.js

Auto-extracted from scan

TRACK

www.lemlist.com/_next/static/chunks/d577d087be712f6d.js

Auto-extracted from scan

TRACK

www.lemlist.com/_next/static/chunks/80e6efd560519035.js

Auto-extracted from scan

TRACK

www.lemlist.com/_next/static/chunks/998f5555a8b4904a.js

Auto-extracted from scan

TRACK

www.lemlist.com/_next/static/chunks/ece8b64979e1b52f.js

Auto-extracted from scan

TRACK

www.lemlist.com/_next/static/chunks/83c53f90896a6c69.js

Auto-extracted from scan

TRACK

www.lemlist.com/_next/static/chunks/e7af75cb1e52ab25.js

Auto-extracted from scan

TRACK

www.lemlist.com/_next/static/chunks/6c6bde68544d44dd.js

Auto-extracted from scan

TRACK

www.lemlist.com/_next/static/chunks/turbopack-ca315cb652a6ff11.js

Auto-extracted from scan

TRACK

www.lemlist.com/_next/static/chunks/7d469b539a5657e2.js

Auto-extracted from scan

TRACK

www.lemlist.com/_next/static/chunks/7b331c25f85e6d52.js

Auto-extracted from scan

TRACK

www.lemlist.com/_next/static/chunks/turbopack-8b73bf4c3b10b53c.js

Auto-extracted from scan

TRACK

www.lemlist.com/_next/static/8lcAzLZXiSFoHZ0iTdHch/_ssgManifest.js

Auto-extracted from scan

TRACK

www.lemlist.com/_next/static/8lcAzLZXiSFoHZ0iTdHch/_buildManifest.js

Auto-extracted from scan

TRACK

www.lemlist.com/_next/static/chunks/2469370bfcd0aa9e.js

Auto-extracted from scan

EXFIL

app.lemlist.com/api/visitors/tracking

Auto-extracted from scan

Ecosystem

Ecosystem & Supply Chain

Operates within marketing automation and outbound email infrastructure. Integration with email tracking and landing page analytics creates comprehensive recipient surveillance pipeline feeding campaign optimization.

Evidence

Evidence Artifacts

Artifacts collected during analysis, available with evidence-tier access.

HAR Capture

Complete network capture with all requests and responses

IOC Manifest

69 detection signatures across scripts, domains, cookies, and network endpoints