Human Security

Human Security

Human Security (formerly White Ops) is a cybersecurity company protecting websites from bot attacks, ad fraud, and account takeover. Scripts collect browser integrity signals and behavioral telemetry to distinguish human visitors from automated traffic.

Back to Vendor Library

Overview

Human Security (formerly White Ops) is a cybersecurity company that protects websites from bot attacks, ad fraud, and account takeover. Its client-side scripts perform real-time device verification to distinguish human visitors from automated threats.

What This Script Does

  • Collects browser environment signals: user agent, screen properties, WebGL renderer, installed plugins, timezone, and language settings
  • Performs behavioral analysis on user interactions (mouse movements, keystroke timing, scroll patterns) to detect non-human behavior
  • Executes JavaScript challenges designed to expose headless browsers and automation frameworks
  • Sends device integrity signals to Human Security's verification servers for real-time bot classification
  • Returns a verification decision that the site's backend can use to allow or block the request

Consent & Compliance

  • Consent category: Essential
  • GDPR/ePrivacy: Data collection is limited to security-related device signals necessary for fraud prevention and bot detection. Under ePrivacy, processing that is strictly necessary to provide a service requested by the user is exempt from consent. GDPR Article 6(1)(f) legitimate interest applies to fraud prevention.
  • CCPA: Data is collected solely for security purposes and is not sold or used for advertising.

Should You Block This Without Consent?

No. Human Security provides critical bot detection and fraud prevention. Blocking it would expose your site to automated attacks, credential stuffing, and ad fraud. It qualifies as a strictly necessary security service.

Visit website

Consent Categories

Essential

Also Known As

Human SecurityWhite Opsbot detectionad fraud preventionHUMAN Security platformbot mitigation service

Industries

Computers Electronics and TechnologyProgramming and Developer SoftwareFinanceBusiness and Consumer Services

Tracked Domains (3)

px-cloud.netEssential
px-cdn.netEssential
perimeterx.netEssential

Frequently Asked Questions

Does Human Security require cookie consent on my website?

No. Human Security performs bot detection and fraud prevention, which qualifies as essential security infrastructure. It does not set marketing or analytics cookies. Under GDPR, security scripts that collect only the minimum data necessary to protect site integrity are generally exempt from consent requirements.

What signals does Human Security collect from visitors?

Human Security scripts collect browser environment signals including user agent, screen properties, WebGL renderer, installed plugins, timezone, and language settings. They also perform behavioral analysis on mouse movements, keystroke timing, and scroll patterns to distinguish human visitors from automated bots and headless browsers.

How does ConsentStack classify Human Security on monitored sites?

ConsentStack classifies Human Security as essential, so it operates without visitor consent. ConsentStack does not block its scripts by default. The service is treated as legitimate security infrastructure, and its behavioral telemetry is disclosed in the privacy notice rather than gated behind a consent prompt.

Related Vendors

Firebase
Firebase
Firebase is Google's mobile and web application development platform offering authentication, real-time database, cloud functions, and analytics. Web SDK scripts initialize Firebase services and may track app events via Firebase Analytics, which is powered by Google Analytics 4. Widely used in single-page apps and PWAs for backend infrastructure and usage tracking.
Google
Google
Google is the dominant provider of web analytics, advertising, and infrastructure tools. Scripts like Google Analytics, Tag Manager, Ads, and reCAPTCHA collect behavioral data, manage tag firing, serve targeted ads, and detect bots. Sets persistent cookies to track users and correlate activity across sites.
Google Tag Manager
Google Tag Manager
Google Tag Manager is a tag management system that lets marketers deploy and update analytics and marketing scripts without code changes. The GTM container script loads synchronously in the page head and injects configured tags, triggers, and variables on behalf of other vendors. No data collection of its own — acts as a loader for other scripts.
Google Fonts
Google Fonts
Google Fonts is a free font hosting service that serves hundreds of typeface families via a global CDN. Stylesheets and font files load from fonts.googleapis.com and fonts.gstatic.com to deliver web fonts to visitors. No advertising or tracking functionality is included.
reCAPTCHA
reCAPTCHA
Google reCAPTCHA is a bot detection and spam prevention service protecting web forms, login pages, and checkout flows. Scripts analyze user behavior, mouse movements, and browser fingerprints to distinguish humans from bots. The invisible reCAPTCHA v3 scores interactions without requiring user challenges.
Sign in with Google
Sign in with Google
Sign in with Google is an OAuth-based authentication service that enables users to log into websites using their Google account credentials. Scripts load the Google Identity Services library, display sign-in buttons, and handle token exchange for secure authentication. Stores session tokens and authentication cookies to maintain login state across page visits.

Manage consent for Human Security

ConsentStack automatically detects and manages Human Security trackers so your site stays compliant with global privacy regulations.

Get started free