Back to Home
Compliance & Security

GDPR-Compliant Feedback: Client-Side PII Redaction

Collect bug reports and feature requests safely. NanoLog runs client-side sanitization filters directly in the browser, identifying and redacting Personally Identifiable Information (PII) before any payload reaches our servers or databases.

Start Collecting Feedback

Client-Side Sanitization

Enterprise clients have strict data policies. If your users accidentally paste database connection strings, passwords, or credit card numbers inside a feedback box, standard logging tools record it immediately. NanoLog analyzes submissions on the client side using regex heuristics and redacts sensitive parameters.

Automatic email & phone masking
Credit card & bank pattern filtration
Console token & API secret redaction
pii-redactor.js
// Client-Side PII scrubbing rules before API dispatch
function redactPII(text) {
  let scrubbed = text;
  
  // 1. Mask Email patterns
  const emailRegex = /[a-zA-Z0-9._%+-]+@[a-zA-Z0-9.-]+\.[a-zA-Z]{2,}/g;
  scrubbed = scrubbed.replace(emailRegex, '[EMAIL_REDACTED]');

  // 2. Mask Credit Card patterns (Luhn-like grouping)
  const ccRegex = /\b(?:\d[ -]*?){13,16}\b/g;
  scrubbed = scrubbed.replace(ccRegex, '[CREDIT_CARD_REDACTED]');

  // 3. Mask Authorization Tokens and Bearer keys
  const tokenRegex = /(?:bearer|token|secret|password|passwd|key)[\s:="']+[a-zA-Z0-9._~+/-]{15,}/gi;
  scrubbed = scrubbed.replace(tokenRegex, (match) => {
    // Preserve parameter title but mask values
    const parts = match.split(/[:="']/);
    return `${parts[0]}: "[SECRET_REDACTED]"`;
  });

  return scrubbed;
}

// Executed inside the Web Component widget prior to POST request
const feedbackText = this.shadowRoot.querySelector('#feedback-input').value;
const safePayload = redactPII(feedbackText);

GDPR & HIPAA Pillars

Zero Server Exposure

By processing filters in the client browser, raw keys and passwords are scrubbed before traveling across HTTP channels.

Database Isolation

Database entries only hold safe values. This avoids compliance risks regarding sensitive data breaches on secondary servers.

Strict GDPR Safeguards

Includes options to disable client diagnostic logs, screen sizes, or location metrics completely with a single widget initialization flag.

Protect Customer Data Today

Switch to a privacy-conscious feedback collection platform. NanoLog keeps your integrations safe and fully compliant.

Start Free Setup
GDPR Compliant Feedback & Client-Side PII Redaction | NanoLog | NanoLog