Personally-Identifying Information (PII) can appear in your page content or in user input. Hotjar has been designed with user privacy in mind. You can suppress page content from Heatmaps, Recordings, and Feedback screenshots. By default, Hotjar suppresses user input.
Suppressed data appears as asterisks, for example, *, or ***, of slightly randomized length instead of text. Input fields that accept numbers convert into 1s, for example, 111. Date input fields will always be suppressed as "01/01/1979" instead of asterisks or a series of 1s. Suppressing images is also possible.
Hotjar will always suppress numbers 9 digits or longer regardless of settings
This prevents Hotjar from capturing information such as credit card numbers or telephone numbers. This also includes characters such as hyphens or colons separating numbers.
All suppression occurs before sending the data back to our servers. After collection, there is no way to retrieve or suppress data and updating suppression settings will not apply the updated settings retroactively.
Learn more about:
Suppression can be turned off for some allowed input fields
Hotjar suppresses all user input by default, however data collection can be enabled on some allowed input fields. Follow the steps in our How to Show Elements and Keystrokes in Data Collection article to remove suppression on allowed input fields.
Site-wide page content suppression
Hotjar disables most content suppression by default. You control page content suppression for each Site in your Account. You can change suppressing settings in your Site Settings.
Visit Sites & Organizations within your Hotjar Account.
Click the gear icon to access Site Settings for the site you would like to suppress on-page text.
You will need Admin team access permissions or higher.
Under Data suppression toggle which options you want on or off.
You have various content suppression options available. They include:
- Location information: The user’s country of origin is suppressed. Hotjar does not store end-user IP addresses at rest.
On-page content: All content including images is suppressed. Boxes with a diagonal line-pattern (seen below) will show the same size as the original image.
On-page text: All text-content is suppressed.
On-page numeric text: All numeric characters are suppressed. Hotjar enables this by default.
On-page email addresses: Anything that matches an email address pattern is suppressed. Hotjar enables this by default.
Keystroke data on allowed input fields suppression - Suppress input data even if those inputs have been allowed previously.
Specific element suppression
You can suppress individual elements by making a small modification to your page’s HTML. Your development team can add “data-hj-suppress” as an HTML attribute or class to the element(s). This suppresses all text and image content inside the element, including child elements.
Here’s an example of suppressing a paragraph / a single HTML element by adding it as an attribute:
<p data-hj-suppress> Suppress me</p> <p>Do not suppress me.</p>
You can also add the attribute as a class:
<p class="data-hj-suppress">Suppress me.</p> <p>Do not suppress me.</p>
You can suppress child elements by applying the attribute to parents:
<div data-hj-suppress> <img src="suppressed_image.png" /> <p>Suppressed text</p> </div>
You cannot suppress inline SVGs
SVGs linked as the source for image elements can be suppressed, but inline SVGs cannot.