This page will briefly outline our integration with userstack.
One of the ways we determine whether a login is suspicious is by comparing the User Agent logging in with previously logged in user agents.
For example, did a user log in using
Chome v84 and then an hour later, logged in using
Chrome v72?
In order to answer those kinds of questions, we use a 3rd-party API called userstack. We supply them with a simple User Agent string, and they return us structured data about that user agent.
And because we don't give them any other information about the request, this data is not identifiable and poses no security concerns.