How This Briefing Works
This dossier opens with key findings, then maps the gap between what Trustradius discloses and what BLACKOUT observed at runtime. From there: what it means for your organization, what to do about it, and the detection evidence underneath. BLACKOUT observes runtime browser behavior and cites the regulations that address each pattern — legal determinations are your counsel's call.
At a Glance
across 2 sites
vendor fires before consent
Briefing
Review platform vendor detected deploying defeat device (BTI-C01), behavioral biometrics (BTI-C06), session recording (BTI-C07), consent bypass (BTI-C09), and fingerprinting (BTI-C10). Signal corruption at 25 reflects measurement interference through review widget instrumentation. CAC subsidization at 90 indicates extensive competitive intelligence transfer through cross-customer review engagement monitoring. Legal tail risk at 100 driven by tracking mechanisms embedded in trust infrastructure.
What This Means For You
Marketing teams lose attribution clarity when review widgets inject third-party behavioral signals. Analytics teams face measurement distortion from embedded review content. Legal teams inherit liability exposure when trust infrastructure deploys deceptive tracking. Revenue operations teams subsidize competitor intelligence through shared review platform observing engagement across customer base.
Risk Channel Breakdown
Review widget instrumentation corrupts website analytics by injecting third-party behavioral signals that distort engagement metrics and create attribution conflicts when visitors interact with embedded review content.
Cross-customer review monitoring transfers competitive intelligence as TrustRadius observes which competitors deploy review widgets, engagement patterns across industries, and review consumption behavior across shared customer base.
Expands attack surface
Trust infrastructure vendor deploying deceptive tracking and consent bypass mechanisms creates liability exposure when review platform itself violates visitor expectations and regulatory frameworks governing embedded third-party content.
Threat Indicators
Runtime-observed (BTI-C)
Evasion infrastructure, auditor bypass
Keystroke/mouse tracking
Full session replay
Ignoring CMP signals
Device identification
Per-code narrative explanations of what each detected behavior means for your organization
Per-code evidence with full attribution chain, severity rankings, and consequence narratives See pricing →
Claims vs. Reality
BLACKOUT analyzed Trustradius's public claims against observed runtime behavior and identified 1 contradiction.
Full claim-vs-reality gap analysis with claim text, observed behavior, severity, regulatory citations (GDPR, CCPA, ePrivacy), and evidence pointers per gap See pricing →
What To Do
4 for current users · 3 for evaluators
contractual leverage points
Role-specific actions (security / legal / marketing / procurement), full negotiation brief with contractual language, and BTI-code-specific consequences See pricing →
Supply Chain & Pairings
Claims 0, observed 1
Full supply-chain mapping (loads / loaded-by lists with vendor identities) and the undisclosed-subprocessor list with observation evidence See pricing →