Treat context as guidance
Widget context helps the assistant and your team understand the visitor journey. It should not be treated as secure proof of identity or permission.
Safe values to send
Safe examples include page type, logged-in state, customer type, platform name, account status label, product category, product code, support area, or registration step.
Values to avoid
Do not send passwords, password reset links, API tokens, session IDs, cookies, card details, bank details, private notes, supplier costs, margin data, or personal data that is not needed for support.
Keep values short and clear
Use short labels such as trade, guest, registered, unregistered, product_page, checkout_help, or existing_trade_customer. Clear labels are easier to test and review than long raw system values.
Review before launch
Before enabling custom context on a live site, run a safe test chat, open Conversation Review, and confirm only the intended values are visible.