The Anatomy of the We360.ai Agent
We360.ai desktop agent internals — stealth mode, silent monitoring, screen recording, app tracking, and offline data sync.
We360.ai provides comprehensive productivity and activity tracking designed to operate seamlessly across all major platforms — Windows, macOS, Linux, iOS, and Android — whether a user is online or offline. This tracking is delivered through two distinct desktop applications tailored for different operational needs: the Standard App and the Stealth App. Both modes offer the same full-featured tracking capabilities, with the Stealth App operating silently as a fully functional background service.
1. Operating Modes
Provides employees with a visible Desktop Agent, allowing them to manually punch in/out, pause tracking, or view their own stats. Designed for environments requiring transparent, user-driven time tracking.
Installs the tracker silently in the background, operating entirely without UI interaction. It runs as a fully functional system service, delivering the same per-second tracking capabilities as Standard Mode — including app & URL tracking, input monitoring, screenshots, and screen recording — while automatically tracking work during configured shifts.
2. Data Capture Mechanisms
The core engine of the agent is responsible for continuously but efficiently capturing the following data points at per-second granularity, ensuring no work activity is missed:
App & URL Tracking: The desktop app passively watches the active window title and records the application or domain URL in focus. It records the exact duration — down to the second — the app or URL remains active. A dedicated Chrome Extension is also available for enhanced browser-level tracking.
Input Tracking: Fully functional keyboard and mouse activity tracking with sub-second precision — logging interaction frequency by counting keystrokes and mouse clicks (without recording actual keys pressed or characters typed). We360.ai does not perform keylogging; only aggregate counts are captured to ensure privacy while calculating active versus idle time.
Visual Data: Captures periodic screenshots mapping to specific tracked time intervals, if permitted by policy.
Location Tracking: The Standard App includes built-in location tracking, complementing the mobile app's GPS-based field tracking to provide comprehensive whereabouts visibility across both desktop and mobile endpoints.
3. Offline-First Architecture
To ensure uninterrupted tracking regardless of internet stability, both We360.ai applications utilize a robust offline-first architecture:
Local Storage
All captured data (text metrics, screenshots, and recordings) is immediately written to a local database on the user's machine.
Periodic Sync
When network connectivity is detected, the agent initiates a background sync, securely transmitting the local data to the backend API over encrypted HTTPS.
Data Integrity
Once the server confirms receipt of the data, the local database marks the data as synced and clears the database to optimize space.
4. Privacy and Security Compliance
Protecting user data and maintaining organizational compliance is built into the architecture of both applications.
Data in Transit: All synced data is securely transmitted and encrypted using standard HTTPS protocols. Real-time livestreams are secured via WSS (WebSocket Secure).
Compliance Standards: Built to strictly align with major global compliance and security frameworks, including SOC 2, GDPR, DPDP, and HIPAA. The platform also includes Data Loss Prevention (DLP) capabilities to help organizations detect and prevent unauthorized data exfiltration.
Virtual Desktop Support: Fully supports Citrix, RDP, and VDI environments, enabling organizations to monitor virtual desktop sessions with the same fidelity as physical endpoints.
Privacy Controls:
Screenshot Blurring: Protects sensitive on-screen data. Administrators can adjust the blur level to ensure privacy without compromising activity monitoring.
URL Blocking: Enforce internet usage policies directly through the portal by creating blacklists of domains that the local agent should actively block access to.
Last updated
Was this helpful?