How does ProctorU monitor you?

I've done some research into proctorU and how they monitor their clients during a online exam. The first thing you find out is that you will be giving remote access to your computer. This might seem scary, which it can be, but hopefully this post can clear up how it works. All of the code talk will be based on a windows 10 computer so if you own another OS some of the information will not translate to you directly (sorry).

ProctorU uses LogMeIn, which is a remote access software provider, to access your computer. LogMeIn has a variety of products but proctorU uses LogMeIn Rescue. A remote access VPN, which you can google if you want to learn more, uses the internet to connect your computer to a server which is connected to their computer. This connection is encrypted and can only be accessed if you have the key, in this case is the application you download to chat to your technician contains the one-time specific key. LogMeIn is a very reliable company that many companies use so don't be worried about them tapping into your files or saving and compromising your computer data. Just so you know the moment you launch the LogMeIn app, the connection process will begin. This video here gives you a nice overview of what the technician can see:

It is pretty old but they still use it on their website so i'm assuming a lot hasn't changed. From this video and after visiting both ProctorU and LogMeIn's websites it seems as though the technicians can only access your computer as if they've plugged in their own mouse and keyboard. I feel pretty safe so far but there is one thing that bothers me. At about 3:39mins, you can see the technician can see and transfer files without your permission.  Before starting the GAMSAT the proctor does transfer and excecute a script file:

12:32 PM You have granted full permission to My Technician.. To revoke, click the red X on the toolbar.

12:32 PM Deployment of the script 'WIN - VM/Blacklist Check' has started.

12:32 PM Receiving the script file 'Win-VMBlacklist.cmd'.

12:32 PM File transfer complete. (Size: 5778 bytes, MD5 fingerprint: 34B22AF4B0C8802317E68E89120201F5)

12:32 PM Script started.

12:32 PM Script has been executed. Output:

skypebackgroundhost.exe has been closed.

runtimebroker.exe has been closed.

WindowsInternal.ComposableShell.Experiences.TextInput.InputApp.exe has been closed.

Steam.exe has been closed.

WinStore.App.exe has been closed.

[SUCCESS] Non-permitted application check complete. If a permitted application was closed by mistake, please let us know and we will re-open it for you. Good luck on your exam! 

Should you be worried about this? No

This file here just ran an executable to close any blacklisted apps, no harm done. If you had any unsaved documents then you would have lost some data that's about it. If someone wanted to hack you they would need administrator privileges. Unless you have specifically changed this setting, if someone was trying to modify files on your computer a pop-up will appear and you can intervene. What they can do, however, is copy your files and potentially read them at a later time.

I've skimmed over ProctorU's privacy policy which you can read more about here. In summary they can only share your personal information (which includes all the files on your laptop) to your institution (depending on their agreement) or process your info on a legal proceeding. They hold onto you info for

"...as long as necessary for us to perform any contract with you or your institution, or as long as needed to comply with our legal obligations."

and now here's the scariest bit under their security subheading:

"Nonetheless, we cannot guarantee that transmissions of your information will always be secure or that unauthorized third parties will never be able to defeat the security measures taken by us or our service providers."

If you feel like your data has been compromised be sure to act as soon as possible. You can definitely trust ProctorU (2020) just monitor the chat and be careful of any file transmissions or your technician asking for suspicious permissions:  

"...we provide you with the ability to access, correct, export, delete, withdraw consent, object to the processing of, or suspend processing of your personal information. These functions will either be available within our Services, or you can contact us to submit a request. Note that if your request relates to information associated with your exam, you must submit your request through your testing institution. We will respond to your request in accordance with applicable regulations. We will require you to verify your identity before we respond to your request."

Now skimming over LogMeIn's privacy policy which you can see here. They can see your location and retain our data for

"...no longer than needed for the business purposes for which it was collected or as necessary to comply with our legal obligations, resolve disputes, and enforce our agreements."

Everything else is pretty similar to ProctorU, they've got a lot more security protocols and acronyms which i'm not bothered to understand. In summary, you should be worried about you personal data and files (you actually give a lot more information to Microsoft or Apple). On the off chance you do get a sketchy technician be sure to contact ProctorU as soon as possible, and change your passwords and all that other stuff (you guys are all going to become doctors so I should need to remind you anyway).

ProctorU states that LogMeIn Rescue app which deletes itself after you close it but there are still some files that remain in your computer. I'm not a coding expert but some of these files have given full administrator permission to users that are not on my computer and I wouldn't want them in my computer.

I searched my computer for every file named proctorU or LogMeIn and deleted it (I only found 2) and ran a windows defender scan to give me some piece of mind. I would recommend you do something similar.

What about giving access to my camera, face cam and mic? and what does that plugin do?

The plugin can:

• Access your data for all websites
• Clear recent browsing history, cookies, and related data
• Get data from the clipboard
• Input data to the clipboard
• Extend developer tools to access your data in open tabs
• Access your location
• Monitor extension usage and manage themes
• Display notifications to you
• Read and modify privacy settings
• Access browser tabs
• Access browser activity during navigation

Not anything you should be worried about. The way they monitor you is through the browser so once you close it they can't see you (they've got less access than the FBI agent always looking through your webcam).

If you are a privacy freak then this probably isn't enough information for you and I would recommend you to research more into remote access VPN.