Application Security

CX Core

Encryption at rest for CX Messages

From CX4.10 onwards, all message content processed within Expertflow is being encrypted using the AES-256 algorithm. For more details, please visit the Data Encryption section.

PII data masking for Application logs

For enhanced security, the Customer’s PII (Personally Identifiable Information) is redacted from application logs. For more details, please visit the PII Data Masking section.

Cross-site scripting (XSS) attack prevention

To mitigate the risk of Cross-Site Scripting (XSS) attacks, all user-generated data originating from customer widgets, such as pre-chat forms and message content, is securely encoded at the Web Channel Manager level (websocket server). This ensures that potentially malicious inputs (e.g, <script>) are safely converted to their HTML-encoded equivalents (e.g., <script>). This encoding is applied at both receiving and sending points to ensure comprehensive protection against XSS vulnerabilities.

AgentDesk

PII data masking for Customer Attributes

For enhancing customer privacy, the Customer’s PII (Personally Identifiable Information) has been masked for the Junior Agent Role in the AgentDesk application. For more details, please visit the PII Data Masking section.

Customer Web Widget

Secure Transcript URL

To download the chat transcript, a URL is generated at the end of each chat session. From CX4.10, we have improved the URL’s structure to enhance the protection of PII and prevent unauthorized access to customer metadata via shared URLs. This aligns with privacy-first design standards and secure data handling practices.

Voice Recording

Encryption at rest for voice recording

Pause and resume voice recording