How This Briefing Works
This dossier opens with key findings, then maps the gap between what Usergems discloses and what BLACKOUT observed at runtime. From there: what it means for your organization, what to do about it, and the detection evidence underneath. BLACKOUT observes runtime browser behavior and cites the regulations that address each pattern — legal determinations are your counsel's call.
At a Glance
across 5 sites
vendor fires before consent
Briefing
De-anonymization vendor detected deploying defeat device (BTI-C01), behavioral biometrics (BTI-C06), session recording (BTI-C07), cross-domain sync (BTI-C08), consent bypass (BTI-C09), and fingerprinting (BTI-C10). Signal corruption at 40 reflects significant measurement interference through contact tracking infrastructure. CAC subsidization at 100 indicates complete competitive intelligence transfer through cross-customer contact monitoring. Legal tail risk at 75 driven by surveillance mechanisms deployed through relationship intelligence platform.
What This Means For You
Marketing teams lose attribution clarity when contact tracking distorts visitor behavior analysis. Analytics teams face measurement corruption from relationship intelligence layering. Legal teams inherit liability exposure when contact platform deploys comprehensive surveillance. Revenue operations teams subsidize competitor intelligence through shared contact monitoring infrastructure.
Risk Channel Breakdown
Contact tracking instrumentation corrupts website analytics by layering relationship intelligence signals onto visitor behavior, creating measurement distortion when contact change monitoring interferes with standard attribution models.
Cross-customer contact monitoring transfers complete competitive intelligence as UserGems observes which competitors track job changes, relationship mapping strategies across industries, and contact engagement patterns across shared customer base.
Expands attack surface
Relationship intelligence platform deploying comprehensive surveillance creates liability exposure when contact tracking infrastructure enables visitor monitoring that extends beyond disclosed contact intelligence functionality.
Threat Indicators
Runtime-observed (BTI-C)
Evasion infrastructure, auditor bypass
Keystroke/mouse tracking
Full session replay
Identity stitching
Ignoring CMP signals
Device identification
PII deanonymization
Container/loader (neutral)
Per-code narrative explanations of what each detected behavior means for your organization
Per-code evidence with full attribution chain, severity rankings, and consequence narratives See pricing →
Claims vs. Reality
BLACKOUT analyzed Usergems's public claims against observed runtime behavior and identified 1 contradiction.
Full claim-vs-reality gap analysis with claim text, observed behavior, severity, regulatory citations (GDPR, CCPA, ePrivacy), and evidence pointers per gap See pricing →
What To Do
4 for current users · 3 for evaluators
contractual leverage points
Role-specific actions (security / legal / marketing / procurement), full negotiation brief with contractual language, and BTI-code-specific consequences See pricing →
Supply Chain & Pairings
Full supply-chain mapping (loads / loaded-by lists with vendor identities) and the undisclosed-subprocessor list with observation evidence See pricing →