Session Replay and data privacy
Understand how Session Replay works and how Pendo protects sensitive user data.
Reconstructs user behavior through DOM events, not screen video.
Excludes sensitive data like passwords or keystrokes unless configured otherwise.
Session data stored for 30 to 90 days; clips can be saved for up to 1 year.
What does Session Replay actually capture?
It logs a subset of data object model (DOM) events (not screen video) to help teams understand user behavior.
Is any sensitive data captured automatically?
No. By default, sensitive data like keystrokes and passwords is excluded. You control what’s captured.
How long does Pendo retain replay data?
Replay data is retained for 30 days by default, or you can upgrade to 90-day replay retention. Replay clips can be stored for up to 1 year.
Can I control which users are captured?
Yes, you can define which visitors, Pages, or Features to track.
Can Pendo employees access my data?
Only with explicit permission from the customer; all access is audited and time-limited.
Where can I learn more?
See Overview of Session Replay or visit our Trust Center.
Return to Featured security topics ›