Overview
When you capture a Mirror Screen, Whatfix stores the on-screen content to create interactive simulations for learners. The captured content might include personal or confidential information visible on the screen at the time of capture.
Mirror provides the Enhanced Screen Editing Experience, which enables you to edit screen content and redact Personally Identifiable Information (PII) before and after you capture a Mirror. Additionally, Smart Edits detects and surfaces potential PII across screens that have already been captured, so you can review and redact sensitive information for the displayed simulation.
Note:
The Enhanced Screen Editing Experience is a Beta feature. To enable this feature, contact your Customer Success Manager. For more information, see Edit and Manage Mirror Screens.
For more information on what Mirror captures and how captured data is stored, see Whatfix Security Overview.
Editing Before Screen Capture
Before you capture a Mirror Screen, you can edit or redact on-screen content. This includes both text and image-related edits. Any edit you make to on-screen content is treated as a PII edit.
When you edit any content before you capture a Mirror Screen, the original Document Object Model (DOM) is removed before it leaves your browser. Mirror does not store the original DOM for such edits. Instead, a masked version of the original and the replacement value are stored in encrypted form to enable the edit to be applied across other screens.
If you capture a Mirror Screen without editing any content on the screen, the DOM is stored in its original state at the time of capture.
Note:
To prevent sensitive content from being stored, you must edit and redact the content before you capture a screen. Once a screen is captured, the original DOM is stored regardless of any edits you make afterward.
PII Detection with Smart Edits
Note:
Smart Edits is a Beta feature that is available only on Cloud deployments. To enable this feature, contact support@whatfix.com. For more information, see Smart Edits in Mirror.
Whatfix enables you to identify categories of sensitive data on captured Mirror Screens using Smart Edits. When enabled, Smart Edits analyzes your captured screens, highlights elements that might contain sensitive information, and provides AI-powered suggestions to redact or replace them. Mirror automatically scans each captured screen for commonly recognized PII patterns and flags potential matches for your review. If you capture a Mirror Screen without redacting all sensitive content, Smart Edits flags those screens for your review and highlights them with yellow borders.
Note:
Smart Edits provides only recommendations. Any edit you make after you capture a Mirror Screen reflects in the simulation learners interact with, but the original captured DOM remains unchanged.
Smart Edits supports the following categories:
Identity documents and numbers
Social Security Numbers (SSN)
Individual Taxpayer Identification Numbers (ITIN)
Aadhaar numbers
PAN card numbers
National Insurance Numbers (NIN)
US Passport numbers
Contact and personal information
Email addresses
Phone numbers
Personal identifiers (such as names of employees, customers, or other individuals)
Contact information (such as addresses and other personal details)
Financial data
Credit card numbers (Mastercard, Visa, American Express)
Financial data (such as bank account numbers and payment details)
Dates and technical identifiers
Dates (such as birthdates or appointment dates)
IPv4 and IPv6 addresses
MAC addresses
System log data (such as session IDs and transaction IDs that could enable tracking)
Visual content
Images and media that might contain faces, IDs, or sensitive visuals
Security Controls
Captured content retained by Whatfix is encrypted at rest. Access to stored data is governed by Whatfix security policies and role-based access controls. For more information, see Data Security and Privacy Policies for Whatfix AI features.