“The manager asked me to ‘set up computer monitoring.' As the IT specialist, I asked: ‘What kind of monitoring exactly?' He was surprised: ‘Wait, there are different kinds?' And that kicked off an hour-long explanation: time tracking is one thing, activity monitoring is another, keyloggers are a completely illegal third, and DLP is a whole separate story. He thought ‘computer monitoring' was one thing. In reality, it's an umbrella term for a dozen different technologies with different purposes, legality, and consequences.”
“Computer monitoring” is not a single technology — it is an umbrella term for an entire spectrum of tools: from legally required time tracking to illegal keyloggers. Confusion between these concepts leads to serious mistakes: companies implement the wrong solution, violate the law out of ignorance, or overpay for features they do not need. This guide clarifies what computer monitoring actually means, what types exist, and how each one works.
This article covers all major types of computer monitoring — time tracking, activity monitoring, screenshots, keyloggers, and DLP — how each works technically, what is and is not legal under Ukrainian law, and how to choose the right one. A complete explainer based on the Labour Code of Ukraine (КЗпП).
What is computer monitoring: definition
Computer monitoring is the collection of data about computer usage: which applications are running, how much time is spent in them, which websites are visited, and what actions are performed. The purpose can vary — from tracking working hours to ensuring data security.
The key thing to understand upfront: “computer monitoring” covers a wide range of technologies that differ radically in:
- Purpose (time tracking / productivity / security / surveillance)
- Depth (from total time to every keystroke)
- Legality (from fully legal to criminally punishable)
- Impact on trust (from neutral to catastrophic)
| Parameter | The spectrum of computer monitoring |
|---|---|
| Depth | Time tracking → activity → content → keystrokes |
| Purpose | Accounting → analytics → security → total surveillance |
| Legality | Legal (with consent) → grey area → illegal |
| Transparency | Open → covert |
The most common mistake is treating “computer monitoring” as a single thing. In reality, the specific type chosen determines the value it delivers, the risks it creates, and its effect on the team.
“The biggest source of confusion with clients: they say ‘I want computer monitoring' and mean completely different things. One wants time tracking for payroll. Another wants to see who is browsing social media. A third wants protection against data leaks. A fourth — and this is where I stop them — wants to ‘read all their messages' (which is illegal). Computer monitoring is not a single button. It is an entire industry of technologies.”
Type 1: Time tracking (most legal)
The simplest and most legally sound type of computer monitoring is time tracking.
What it does:
- Records the start and end of the workday
- Counts active time vs. idle time
- Generates timesheets
How it works technically:
- A lightweight background agent
- Detects activity (keyboard, mouse) to distinguish work from idle
- Does not observe what the person is doing — only whether they are working
Legality: ✅ Fully legal with consent (Article 30 of the Labour Code of Ukraine requires employers to keep time records).
Impact on trust: Neutral — this is a standard, accepted practice.
| Parameter | Time tracking |
|---|---|
| Depth | Minimal (time only) |
| Legality | ✅ Fully legal |
| Consent required | Yes (Law of Ukraine on Personal Data Protection) |
| Impact on trust | Neutral |
| For whom | All companies (baseline requirement) |
“Time tracking is the type of computer monitoring every business should start with. It satisfies the legal requirement (Article 30 of the Labour Code of Ukraine), provides a baseline picture, and the team accepts it without friction — it is the norm. For 70% of companies, this level is entirely sufficient.”
Type 2: Activity monitoring (productivity)
A deeper type of computer monitoring is activity monitoring with categorisation.
What it does:
- Records which applications and websites are being used
- Categorises usage as productive or unproductive
- Analyses deep work, fragmentation, and behavioural patterns
How it works technically:
- Identifies the active application or website domain
- Classifies it against a database plus custom settings
- Builds productivity analytics
Legality: ✅ Legal with consent, provided that the fact of usage is recorded — not the content (in compliance with Article 31 of the Constitution of Ukraine).
Impact on trust: Depends on framing — positioned as analytics for improvement it is neutral to positive; framed as catching slackers it is negative.
| Parameter | Activity monitoring |
|---|---|
| Depth | Medium (applications, websites — not content) |
| Legality | ✅ Legal with consent |
| Consent required | Yes |
| Impact on trust | Depends on the philosophy of use |
| For whom | Companies seeking productivity analytics |
This is the most widely used type of computer monitoring for business — it delivers real analytical value (where time goes, how to optimise processes) while remaining within the legal framework.
“Activity monitoring is the ‘sweet spot' of computer monitoring. Time tracking alone is too basic for serious analytics, while screenshots and keyloggers are too invasive and legally risky. Activity monitoring delivers 90% of the management value: you see where time goes, where fragmentation occurs, which processes are broken — without intruding into content.”
→ More on activity monitoring: Computer monitoring software: 12 features and how they work
Type 3: Screenshots (grey area)
A more invasive type of computer monitoring is periodic screen capture.
What it does:
- Takes screenshots at set intervals (every 5–15 minutes) or triggered by events
- Allows visual inspection of what is on the screen
How it works technically:
- Periodic or event-triggered screen capture
- Screenshots stored on a server
Legality: ⚠️ Grey area. A screenshot can capture personal correspondence or confidential data — placing it on the boundary of Article 31 of the Constitution of Ukraine. Explicit consent, a clearly defined purpose, and the principle of proportionality are all required.
Impact on trust: Generally negative — perceived as invasive surveillance.
| Parameter | Screenshots |
|---|---|
| Depth | High (screen is visible) |
| Legality | ⚠️ Grey area, legal risks |
| Consent required | Yes, explicit + clearly stated purpose |
| Impact on trust | Generally negative |
| For whom | Only where genuinely necessary (security, specific billing scenarios) |
Critical note: in many industries (law firms, healthcare) screenshots are categorically unacceptable due to professional secrecy obligations. Legal consultation is mandatory before implementation.
“Screenshots are the type of computer monitoring where I always advise stopping and thinking three times. The legal risks are real (Article 31 of the Constitution of Ukraine). The impact on trust is destructive. And the management value can usually be achieved through activity monitoring — without screenshots. If you ‘really want screenshots,' first ask yourself why, and whether the problem could be solved with a less intrusive tool.”
Type 4: Keyloggers (illegal)
The most invasive form of “computer monitoring” is keylogging — recording every keystroke.
What it does:
- Records every key pressed
- Including passwords, personal messages, and all text entered
Legality: ❌ ILLEGAL in Ukraine. Keyloggers violate Article 31 of the Constitution of Ukraine (secrecy of correspondence) and may fall under Article 163 of the Criminal Code of Ukraine (violation of the secrecy of correspondence, telephone conversations, telegraph or other communications).
Why this matters: many people searching for “computer monitoring” come across keyloggers without realising that using them creates criminal liability for the employer themselves.
| Parameter | Keyloggers |
|---|---|
| Depth | Total (every keystroke) |
| Legality | ❌ ILLEGAL (Article 163 of the Criminal Code of Ukraine) |
| Consent | Does not legalise (violates the Constitution) |
| Impact on trust | Catastrophic |
| For whom | NO ONE (criminal risk) |
“The most important warning about computer monitoring: keyloggers are not ‘deeper monitoring' — they are a crime. Article 163 of the Criminal Code of Ukraine. I have seen a manager install a keylogger ‘to see everything,' only to face criminal prosecution himself when an employee found out and went to the police. No management need is worth a criminal risk. Keyloggers are an absolute taboo.”
→ More on legal boundaries: Time tracker: how to choose and implement it legally in Ukraine
Type 5: DLP systems (data security)
A distinct category of computer monitoring is DLP (Data Loss Prevention) — systems designed to prevent data leaks.
What it does:
- Monitors the movement of sensitive data
- Blocks unauthorised transfers (personal email, USB drives, file-sharing services)
- Detects attempted data leaks
How it works technically:
- File scanning against classifiers
- Control of data transmission channels
- Alerts on suspicious activity
Legality: ✅ Legal and often legally required (for companies handling clients' personal data — Articles 24 and 36 of the Law of Ukraine on Personal Data Protection).
Impact on trust: Neutral when implemented correctly — perceived as a security measure, not productivity surveillance.
| Parameter | DLP systems |
|---|---|
| Depth | High (data control) |
| Legality | ✅ Legal, often mandatory |
| Consent required | Yes |
| Impact on trust | Neutral (this is about security) |
| For whom | Banks, fintech, healthcare, companies handling sensitive data |
“DLP is a separate story in computer monitoring that is often confused with productivity monitoring. These solve different problems: productivity monitoring answers ‘how effectively are people working,' DLP answers ‘are data leaking.' For a bank, DLP is not optional — it is a legal obligation under the personal data protection law. But it does not replace, and is not replaced by, productivity monitoring. These are parallel tools for parallel purposes.”
→ More on data protection: Computer monitoring software: protection against Shadow IT
Comparison table: which type of monitoring to choose
Here is a summary of all types of computer monitoring for easy comparison:
| Type | Depth | Legality | Impact on trust | Use case |
|---|---|---|---|---|
| Time tracking | Minimal | ✅ Legal | Neutral | Payroll, basic records (Article 30 of the Labour Code of Ukraine) |
| Activity monitoring | Medium | ✅ Legal | Depends on framing | Productivity analytics |
| Screenshots | High | ⚠️ Grey area | Negative | Only where genuinely necessary |
| Keyloggers | Total | ❌ Illegal | Catastrophic | NO ONE |
| DLP | High | ✅ Legal | Neutral | Data security (banks, fintech) |
Recommendations by use case:
- Payroll and attendance → Time tracking
- Improving productivity → Activity monitoring
- Process analytics → Activity monitoring
- Data protection → DLP
- “See everything” → Rethink the goal (total surveillance is illegal and destructive)
“I give clients this table instead of a direct answer to ‘what is the best computer monitoring software.' Because the right answer is ‘it depends on what you need.' For 80% of businesses, the optimal setup is: time tracking + activity monitoring framed as analytics. Screenshots — only for specific use cases. DLP — for sensitive data. Keyloggers — never. Understanding the types matters more than picking a brand.”
Legal rules for any type of monitoring
Regardless of which type of computer monitoring you choose, the following legal requirements apply in Ukraine:
Mandatory conditions for lawful monitoring:
- An internal company order authorising implementation
- Inclusion in the internal work regulations (Article 142 of the Labour Code of Ukraine)
- Written employee consent for data processing (Article 6 of the Law of Ukraine on Personal Data Protection)
- Transparency — employees are aware that monitoring is in place
- Data minimisation — only what is necessary is collected (Article 8 of the Law of Ukraine on Personal Data Protection)
- Employee access to their own data (Article 24 of the Law of Ukraine on Personal Data Protection)
Absolute prohibitions:
- ❌ Keyloggers (Article 163 of the Criminal Code of Ukraine)
- ❌ Reading the content of correspondence (Article 31 of the Constitution of Ukraine)
- ❌ Covert monitoring without consent
- ❌ Monitoring personal devices outside working hours
- ❌ Recording webcam or microphone without explicit consent
| Rule | Legal basis |
|---|---|
| Internal order + work regulations | Article 142 of the Labour Code of Ukraine |
| Employee consent | Article 6 of the Law of Ukraine on Personal Data Protection |
| No access to correspondence content | Article 31 of the Constitution of Ukraine |
| No keyloggers | Article 163 of the Criminal Code of Ukraine |
| Employee access to their data | Article 24 of the Law of Ukraine on Personal Data Protection |
“The rule I repeat to everyone: any type of computer monitoring in Ukraine requires three mandatory elements — an internal order, employee consent, and transparency. Plus an absolute prohibition on keyloggers and reading correspondence. Follow these rules and you are operating within the law. Ignore them and you risk fines from the State Labour Service, lawsuits, and potentially criminal liability.”
Conclusion
“Computer monitoring” is not a single technology — it is an umbrella term for a spectrum of tools: from legally required time tracking to illegal keyloggers. Understanding the types — time tracking, activity monitoring, screenshots, keyloggers, and DLP — their purposes, legal standing, and impact on trust is the foundation of making the right choice. For most businesses, the optimal approach is: time tracking + activity monitoring framed as analytics, without invasive practices.
Key takeaways from this article
- “Computer monitoring” is an umbrella term, not a single technology
- Time tracking — the most legally safe, baseline level (Article 30 of the Labour Code of Ukraine)
- Activity monitoring — the “sweet spot” for productivity analytics
- Screenshots — a grey area, unacceptable in many industries
- Keyloggers — ILLEGAL (Article 163 of the Criminal Code of Ukraine), criminal risk
- DLP — a separate task (data security), not productivity monitoring
- Universal rules: internal order + consent + transparency; keyloggers are an absolute taboo
“Before searching for ‘the best computer monitoring software,' decide which type you actually need. Time tracking, productivity analytics, data security — these are different problems requiring different tools. And keyloggers or reading correspondence are not ‘deeper monitoring' — they are crimes. Understanding the types protects your business, your budget, and your freedom.”
FAQ
Which type of computer monitoring is the most legally safe?
Time tracking is the safest, as it is directly mandated by Article 30 of the Labour Code of Ukraine and collects the minimum amount of data (time only). Activity monitoring is also fully legal, provided it records the fact of application usage — not the content. Both require standard documentation (internal order + consent + transparency). The riskiest option is screenshots (grey area); absolutely prohibited is keylogging (Article 163 of the Criminal Code of Ukraine).
Can different types of computer monitoring be combined?
Yes, and this is often the optimal approach. A typical combination is: time tracking + activity monitoring (for productivity) + DLP (for data security, where required). Each type addresses its own purpose. The key is not to accumulate invasive features without justification — this violates the principle of data minimisation (Article 8 of the Law of Ukraine on Personal Data Protection) — and to never use illegal tools such as keyloggers.
How can you tell whether computer monitoring has crossed the legal line?
Three simple tests: (1) Is the content being recorded — text of messages, documents? If yes, this violates Article 31 of the Constitution of Ukraine. (2) Are keystrokes being logged? That is a keylogger, covered by Article 163 of the Criminal Code of Ukraine. (3) Is monitoring covert, without employee consent? That violates the Law of Ukraine on Personal Data Protection. If any one of these tests returns a “yes,” you are operating outside the law. Lawful monitoring records time and the fact of application usage — openly and with consent.
