Loom

Loom

Loom is an async video messaging tool widely used for screen recordings and video communication in remote work. Scripts embed Loom video players on websites and documentation pages. The embed JavaScript tracks video views and engagement — play, pause, and completion — for the recording owner.

Back to Vendor Library

Overview

Loom is an asynchronous video messaging platform founded in 2016 that allows users to record screen, camera, and microphone simultaneously and share recordings via a link. It is widely adopted in remote and hybrid work environments for async communication, product demos, team updates, and software documentation. Loom's embeddable player allows these recordings to be surfaced directly within websites, internal wikis, help centres, and onboarding portals without requiring the viewer to leave the page or create a Loom account.

What This Script Does

The Loom embed JavaScript loads from cdn.loom.com and renders an iframe-based video player targeting www.loom.com/embed/<video-id>. The player fetches video metadata and streaming segments from Loom's CDN infrastructure, primarily on loom.com and Cloudflare-backed delivery endpoints.

Cookies and storage:

  • No persistent cookies are set on the embedding site's own domain by the Loom script.
  • Within the loom.com iframe context, Loom sets a session token to manage playback state and a viewer identifier used for engagement analytics reported to the video owner.
  • loom_viewer_id — Third-party cookie scoped to loom.com; persists across sessions (up to 1 year) and is used to deduplicate view counts and calculate per-viewer watch duration in the creator's analytics dashboard.

Engagement events transmitted per session:

  • Play initiated, pause, seek events with timestamp offsets
  • Completion percentage checkpoints (25%, 50%, 75%, 100%)
  • Total watch duration and replay count
  • Browser and device metadata (user agent, screen resolution, language)
  • Embedding page URL (referrer passed to Loom's analytics API)

Script filename and CDN: loom-embed.js or an inline snippet loaded from cdn.loom.com/player/v1/. Video assets stream from loom-video.s3.amazonaws.com or Cloudflare-fronted delivery domains.

Engagement data is reported to the recording owner's Loom dashboard for measuring audience behaviour and optimising async communication content.

Consent & Compliance

Loom embeds are primarily functional — they deliver content that the page author has chosen to include as part of the page experience. However, the engagement tracking component (per-viewer watch analytics, viewer identification, completion metrics) has a meaningful analytics dimension. Under GDPR and the ePrivacy Directive, third-party cookies set within iframes require the same consent consideration as any other tracking cookie, particularly where a persistent viewer identifier is maintained. Since Loom's tracking is bounded to video engagement (not cross-site ad profiling), the compliance risk is lower than dedicated analytics or advertising tools, but it is not zero. Loom is a US-based service and participates in data transfer mechanisms under GDPR for EU data subjects. Site owners embedding Loom in commercial contexts should disclose it as a functional/analytics sub-processor.

Should You Block This Without Consent?

Conditional. If Loom videos are essential page content — such as product documentation, onboarding tutorials, or help articles — the embed can reasonably be treated as functional content delivered without prior consent, provided the engagement tracking is disclosed. If videos are supplementary or decorative, or if the persistent viewer identifier raises concerns in your privacy posture, blocking until functional consent is granted is the safer approach.

Visit website

Consent Categories

Functional

Also Known As

LoomLoom videoscreen recording embed consentasync video privacyLoom embed cookiesvideo messaging GDPR

Industries

Computers Electronics and TechnologyTelecommunications

Tracked Domains (2)

cdn.loom.comFunctional
loom.comFunctional

Frequently Asked Questions

Does Loom require consent?

Conditionally. If Loom videos are essential page content — product documentation, tutorials, help articles — the embed may load as functional without prior consent. If supplementary, or if the persistent loom_viewer_id cross-session tracking raises concerns, gating behind functional consent is the safer approach.

What tracking does Loom embed perform?

The Loom embed sets loom_viewer_id (up to 1-year, third-party under loom.com) for viewer deduplication and watch analytics. Engagement events — play, pause, seek, completion percentages — and the embedding page URL are reported to the recording owner's Loom dashboard, with browser and device metadata included.

How does ConsentStack handle Loom embeds?

ConsentStack can classify Loom as functional, allowing it to load without explicit consent when videos are essential content. For sites requiring stricter consent, ConsentStack gates the embed behind functional consent and displays a placeholder until the visitor agrees, keeping the page compliant without breaking the content experience.

Related Vendors

Google Maps
Google Maps
Google Maps is the dominant web mapping service used for embedded maps and location features on websites. Scripts load interactive map tiles, geocoding, and Places API functionality through the Maps JavaScript API. May set cookies to remember map preferences and manage API quota.
Google Search
Google Search
Google Search appears on websites through the Programmable Search Engine, enabling custom site-specific search functionality. Scripts load the search widget from Google's servers to render search bars and display results within the host website. Sends search queries to Google's index and may set cookies for search personalization and query history.
Google
Google
Google is the dominant provider of web analytics, advertising, and infrastructure tools. Scripts like Google Analytics, Tag Manager, Ads, and reCAPTCHA collect behavioral data, manage tag firing, serve targeted ads, and detect bots. Sets persistent cookies to track users and correlate activity across sites.
Microsoft Teams
Microsoft Teams
Microsoft Teams is a workplace communication and collaboration platform that can be embedded on websites for chat, meetings, and document sharing. Embedded widgets load from Microsoft's servers to enable real-time messaging, video calls, and file collaboration. Sets authentication and session cookies to verify participant identity and maintain connection state.
Apple Maps JS
Apple Maps JS
Apple Maps JS is Apple's JavaScript mapping framework for embedding interactive maps on websites. Scripts load map tiles, location pins, and routing data from Apple's MapKit servers to render navigable maps within web pages. Requires a MapKit JS token for authentication but does not set tracking cookies or collect behavioral analytics data.
Apple Business Chat
Apple Business Chat
Apple Business Chat enables direct customer messaging between websites and Apple's Messages app. Scripts load chat buttons and conversation interfaces that connect visitors to business support agents through iMessage. Sets minimal session cookies to maintain conversation context but does not track browsing behavior or collect analytics data.

Manage consent for Loom

ConsentStack automatically detects and manages Loom trackers so your site stays compliant with global privacy regulations.

Get started free