Skip to content
  • There are no suggestions because the search field is empty.

Whitelisting happysignals.com to Prevent Automated “Robot Surveys”

This article explains why the happysignals.com domain should be whitelisted in the organization’s security and email‑scanning solutions, and how doing so prevents automated tools from unintentionally submitting HappySignals surveys on behalf of end users.

Background

HappySignals surveys are sent to users after service interactions. Each survey email contains a unique, single‑use survey link. When the user clicks the link, the first click captures their score and opens the full survey.

Some security or email‑scanning tools—such as link reputation checkers, anti‑phishing scanners, or sandbox systems—automatically “pre‑click” URLs in emails to verify safety.
If these systems access HappySignals survey links, they unintentionally:

  • Trigger a survey response without any user interaction
  • Create invalid “robot surveys”
  • Reduce data accuracy
  • Increase false responses with neutral or default values

To prevent this, the organization must whitelist the HappySignals survey domain.

What to Whitelist

Whitelist the following domain used for survey collection:

[customertenant].[tenantlocation].happysignals.com

Whitelisting should apply to:

  • Email link‑checking and URL‑scanning systems
  • Proxy servers and web filters
  • Endpoint security agents performing automated link testing
  • Sandboxing/virtual browser technologies
  • Any “safe link” or “URL rewriting” features in email gateways

Why Whitelisting Is Needed

Whitelisting ensures that:

  • HappySignals survey links are not automatically opened by security software
  • Survey responses are only recorded when a real user clicks the link
  • You maintain accurate, trustworthy survey data
  • Internal metrics, CSAT/NPS scores, and Experience-level reports remain reliable
  • End‑users are not impacted by unintended submissions

Security Considerations

Whitelisting the domain does not bypass or weaken any major security controls.
HappySignals survey links:

  • Are one‑directional and do not grant access to internal systems
  • Do not carry executable content
  • Only open a survey form hosted on the HappySignals secure platform
  • Can be safely excluded from automated scanning

Implementation Steps

The exact configuration depends on your security platform, but typically includes:

  1. Add [customertenant].[tenantlocation].happysignals.com as a trusted domain.
  2. Exclude the domain from URL‑scanning and automated link‑rewriting rules.
  3. Disable pre‑clicking or sandboxing of URLs from this domain.
  4. Confirm changes propagate to all relevant endpoints and filters.
  5. Test by sending a sample HappySignals survey and verifying the link is not scanned.

Validating the Fix

A survey link should only be marked as “clicked” once a real user interacts with it.
To verify:

  • Send a test survey to a monitored mailbox
  • Check that the link is no longer opened by security tools
  • Confirm no survey response is created until a human clicks it

Additional Notes

If your company uses multiple environments (e.g., production + sandbox), ensure that all HappySignals links are whitelisted in all scanning layers.
If you notice unusual response patterns or unexpected early survey clicks, investigate URL‑scanning logs for automated activity.