Operational
These categories report on the session itself rather than page content.Browser activity
These categories report what’s happening in the page. Capturing any of them attaches a Chrome DevTools Protocol (CDP) collector to the session and produces highly granular page-level events. Capturing them adds overhead, so enable only the ones you need.interaction events are browser-native DOM events observed in the page, not calls to the computer-control API (those are reported by the control category).The monitor category
monitor reports the health of the CDP collector itself: monitor_disconnected, monitor_reconnected, monitor_reconnect_failed, and monitor_init_failed.
It isn’t directly settable. It flows automatically whenever any of the browser-activity categories are captured. You can still filter the stream by monitor to isolate these events.
Data sensitivity
Telemetry is off by default and the default set carries operational metadata only. The browser-activity categories are different: they capture what actually flows through the session, which is your own browser’s data and can include credentials and personal information.
Captured events are persisted and can be replayed by resuming the stream, so this sensitivity applies to the data at rest, not just the live stream. Treat captured telemetry - and anywhere you forward or store it - with the same care as the underlying content. For how Kernel encrypts, retains, and processes data overall, see Security and the Data Processing Addendum.
Some exposure is reduced for you automatically: input into sensitive fields such as passwords is suppressed (
interaction_key isn’t emitted for them, and interaction_click omits the element text). Beyond that, because selection is opt-in, the most effective control is to capture only the categories you need - enable network, console, page, interaction, or screenshot deliberately, and prefer the operational categories when you only need session health.