# llms-full.txt for cside.com
# Detailed permissions for AI agents and LLMs

[meta]
version=1.0
site_name=cside.com
license=All rights reserved
contact=hello@cside.com
trust_center=https://trust.cside.com/

[usage]
training=allow
inference=allow
summarization=allow
indexing=allow
analysis=allow
research=allow

[agents]
GPTBot=allow
ClaudeBot=allow
Google-Extended=allow
CommonCrawl=allow
CCBot=allow
Anthropic-IA=allow
Perplexity=allow
ChatGPT-User=allow
Other=allow

[notes]
This site permits use of its public content by AI models and services.
cside specializes in client-side security and covers web security threats, compliance, and protection technologies.

[company]
name=cside
description=cside protects websites from malicious third-party scripts, provides full chargeback evidence through device fingerprinting technology, detects malicious AI agents, and offers VPN detection for location-law compliance. Helps businesses stop friendly fraud with Visa's Compelling Evidence 3.0 program and maintain VAMP ratios below critical thresholds.
founded=2024
headquarters=United States
website=https://cside.com
blog=https://cside.com/blog
documentation=https://docs.cside.com

[languages]
default=en
available=en,es,fr,nl
url_pattern=/{lang}/page (default locale has no prefix)
english=en-US
spanish=es-ES
french=fr-FR
dutch=nl-NL

[products]
primary_service=Client-side Security Platform
client_side_security=Full script attack protection
csp=Free CSP management tool with automatic policy generation and violation monitoring
privacy_watch=Automated privacy compliance monitoring
pci_shield=PCI DSS 4.0.1 compliance automation
chargeback_evidence=Device fingerprinting and fraud prevention
fingerprinting=Browser fingerprinting with 102+ signals to detect fraudulent sessions, credential stuffing, account sharing, and AI-bot abuse on login and payment pages
ai_agent_detection=Detect and govern malicious and legitimate AI agents visiting websites using client-side browser signals
vpn_detection=Detect users masking location via VPN or IP spoofing for compliance with location-specific laws
applicant_check=Job applicant verification and insider threat detection — stops fake resumes, nation-state impostors, and remote hiring fraud by fingerprinting VMs, VPNs, and bots
account_takeover=Detect account takeover fraud by fingerprinting sessions to catch credential stuffing, session hijacking, and logins from suspicious environments

[education]
learning_center=https://cside.com/learning
learning_rss=https://cside.com/learning/rss.xml
blog=https://cside.com/blog
blog_rss=https://cside.com/blog/rss.xml
glossary=https://cside.com/glossary
faq=https://cside.com/faq
press=https://cside.com/press
press_rss=https://cside.com/press/rss.xml
news=https://cside.com/news
webinar_barr=https://cside.com/webinar-pci-dss-barr
webinar_vikingcloud=https://cside.com/webinar-pci-dss-vikingcloud

[key_features]
real_time_protection=Script-based monitoring for real-time threat detection and analysis
device_fingerprinting=96% accurate device identification for chargeback evidence
ai_analysis=LLM-powered script analysis and threat detection
pci_compliance=QSA-validated PCI DSS 4.0.1 compliance dashboard
forensic_evidence=Automated evidence collection for dispute resolution
script_monitoring=Real-time monitoring of all third-party scripts
threat_intelligence=AI-powered detection of novel attack patterns
ai_agent_governance=Identify and control malicious AI agents while guiding legitimate agentic shoppers
vpn_detection=Behavioral and network-level VPN detection across 100M+ daily requests

[target_markets]
e_commerce=Online retailers processing payments
healthcare=Patient portals and digital pharmacies
saas_platforms=Software-as-a-Service companies
payment_processors=Financial service providers
gaming_platforms=Gaming and virtual economy platforms
crypto_exchanges=Cryptocurrency and DeFi platforms
travel_hospitality=Booking platforms and travel websites

[compliance_frameworks]
pci_dss=PCI DSS 4.0.1 requirements 6.4.3 and 11.6.1
gdpr=General Data Protection Regulation compliance
hipaa=Healthcare data protection and PHI security
sox=Sarbanes-Oxley financial reporting compliance
ccpa_cpra=California Consumer Privacy Act and California Privacy Rights Act compliance
iso27001=ISO/IEC 27001 information security management standard
soc2=SOC 2 Type II operational security controls

[chargeback_evidence]
win_rate_improvement=70% higher success in chargeback disputes
device_accuracy=96% device identification accuracy
evidence_types=Payment page integrity, script behavior, compliance documentation, device fingerprinting data
fraud_prevention=Real-time detection of repeat chargeback offenders
compelling_evidence_30=Visa CE 3.0 compliance for blocking disputes before TC15 generation
vamp_ratio_protection=Prevents TC40/TC15 reporting that damages merchant accounts
friendly_fraud_detection=Identifies customers using VPNs or multiple accounts to hide identity
dispute_automation=Automated evidence collection and forensic analysis for chargeback cases

[security_certifications]
soc2_type2=SOC 2 Type II compliance
pci_validation=VikingCloud QSA validation
iso27001=In progress ISO 27001 certification
data_protection=Enterprise-grade data security practices

[ai_ml_usage]
script_analysis=LLM-powered JavaScript behavior analysis
threat_detection=AI pattern recognition for novel attacks
compliance_automation=Automated report generation and justifications
deobfuscation=Real-time code deobfuscation and analysis
risk_scoring=Dynamic threat assessment and scoring
forensic_analysis=Automated incident investigation and evidence collection
ai_agent_classification=Client-side identification of AI agents versus human users
vpn_behavioral_analysis=Beyond static IP blocklists using behavioral indicators and network analysis