Qualtrics

Qualtrics

Qualtrics is an enterprise experience management platform for surveys, NPS measurement, and customer feedback collection. Scripts load embeddable survey widgets and page intercept triggers on websites, collecting visitor responses and behavioral context. Session and visitor identifiers are captured to link survey responses with user journey data.

Back to Vendor Library

Overview

Qualtrics is an enterprise experience management (XM) platform owned by Silver Lake and the Canada Pension Plan Investment Board (formerly a SAP subsidiary). It enables organizations to collect structured feedback through surveys, Net Promoter Score (NPS) measurements, and on-site intercepts. The platform's web-facing components deploy survey widgets and behavioral triggers on websites to capture customer, employee, and user experience data at key interaction points.

What This Script Does

Qualtrics deploys an intercept script and survey engine on websites to trigger feedback collection at configured moments.

  • Scripts loaded: The Qualtrics Site Intercept script loads from siteintercept.qualtrics.com (or a custom-branded domain). This script monitors visitor behavior against configured trigger conditions and launches survey widgets when conditions are met.
  • Intercept triggers: The script evaluates visitor behavior in real time — page URL patterns, time on page, scroll depth, click events, exit intent — to determine when to display a survey invitation. This monitoring occurs continuously while the script is loaded.
  • Survey delivery: When triggered, the survey widget renders as an embedded panel, popup, or slide-in within the page, loading the survey instrument from Qualtrics' servers.
  • Cookies set:
    • QSI_* cookies — First-party cookies (various expiries). Track whether a visitor has been shown a specific intercept, preventing repeated prompts. Each configured intercept generates its own QSI_ cookie.
    • Q_CMP — First-party cookie. Records the visitor's cookie consent state for Qualtrics.
    • Session and visitor identifiers link survey responses to the browsing session.
  • Data collected: Survey response data, page URL and referrer at the time of intercept, visitor session identifiers, browser and device information, and any behavioral data that triggered the survey display
  • Embedded data: Qualtrics intercepts can pass contextual data from the webpage (product IDs, user account status, page categories) into the survey response as embedded data fields.

Consent & Compliance

Qualtrics falls under the analytics consent category.

Under GDPR and ePrivacy, the Qualtrics Site Intercept script requires consent because it sets cookies (QSI_*) to track visitor behavior and intercept display state, and it continuously monitors browsing behavior to evaluate trigger conditions. This constitutes storage of non-essential information on the user's device under the ePrivacy Directive. Survey responses collected through intercepts contain personal data that requires a GDPR-compliant legal basis. Qualtrics provides granular cookie consent configuration and supports integration with third-party consent management platforms.

Under CCPA/CPRA, survey responses, behavioral trigger data, and visitor identifiers constitute personal information. Organizations must disclose the data collection in their privacy policies. If survey data is combined with other datasets for profiling, this may require additional CCPA disclosures.

Qualtrics offers data residency options in the EU, US, and other regions.

Should You Block This Without Consent?

Yes. The Qualtrics intercept script continuously monitors visitor behavior and sets cookies to track intercept display state, even when no survey is shown. Block the intercept script until analytics consent is granted. If surveys are delivered through direct links (rather than on-page intercepts), those do not require the intercept script and can function independently of website consent.

Visit website

Consent Categories

Analytics

Also Known As

qualtricsqualtrics surveyqualtrics npsqualtrics interceptqualtrics experience managementqualtrics xm

Industries

Programming and Developer SoftwareComputers Electronics and Technology

Tracked Domains (1)

survey.qualtrics.comAnalytics

Frequently Asked Questions

Do I need consent to use Qualtrics on my website?

Yes. The Qualtrics Site Intercept script continuously monitors visitor behavior and sets cookies to track intercept display state, even when no survey is shown. This constitutes non-essential tracking under the ePrivacy Directive, requiring analytics consent before the script loads. Block the intercept script until consent is granted.

What cookies does Qualtrics set?

Qualtrics sets QSI_* cookies (various expiries, one per configured intercept) to track whether a visitor has seen specific surveys. It also sets Q_CMP to record visitor consent state. The intercept script loads from siteintercept.qualtrics.com and monitors page URLs, time on page, and scroll depth to evaluate trigger conditions.

How does ConsentStack manage Qualtrics consent?

ConsentStack classifies Qualtrics as analytics and blocks the Site Intercept script until analytics consent is granted. It is detected via siteintercept.qualtrics.com script loads. Once consent is given, ConsentStack unblocks the intercept script, allowing behavioral triggers and survey widgets to fire normally on eligible pages.

Related Vendors

Google
Google
Google is the dominant provider of web analytics, advertising, and infrastructure tools. Scripts like Google Analytics, Tag Manager, Ads, and reCAPTCHA collect behavioral data, manage tag firing, serve targeted ads, and detect bots. Sets persistent cookies to track users and correlate activity across sites.
Google Analytics
Google Analytics
Google Analytics is the world's most widely deployed web analytics platform. Scripts track page views, sessions, user demographics, traffic sources, and conversion events. Drops cookies to identify returning visitors and attribute user journeys across sessions.
Firebase
Firebase
Firebase is Google's mobile and web application development platform offering authentication, real-time database, cloud functions, and analytics. Web SDK scripts initialize Firebase services and may track app events via Firebase Analytics, which is powered by Google Analytics 4. Widely used in single-page apps and PWAs for backend infrastructure and usage tracking.
Microsoft
Microsoft
Runs Clarity (session recording and heatmaps), the Microsoft Advertising UET tag (conversion tracking), and Bing's remarketing pixel. Clarity injects a recording script that captures mouse movements, clicks, and rage clicks. The UET tag fires conversion events to tie ad clicks to on-site actions across Microsoft's ad network.
Microsoft Dynamics 365
Microsoft Dynamics 365
Microsoft Dynamics 365 is a suite of CRM and ERP applications that integrates with websites through tracking scripts and embedded forms. Web tracking code captures visitor behavior, page views, and form submissions to build customer profiles and score leads. Sets cookies to identify returning visitors and attribute marketing touchpoints across sessions.
LinkedIn Insight Tag
LinkedIn Insight Tag
LinkedIn Insight Tag is a JavaScript tracking pixel for LinkedIn's advertising and analytics platform. The tag fires on every page view to collect URL, referrer, IP address, and device data for conversion tracking, website demographics reporting, and retargeting audience building. Sets cookies to identify LinkedIn members across advertiser websites.

Manage consent for Qualtrics

ConsentStack automatically detects and manages Qualtrics trackers so your site stays compliant with global privacy regulations.

Get started