Verify if the de-identify option is checked in the VSE Recorder.
De-identification (formerly called desensitization) means attempting to recognize sensitive data and substituting random, but validly formatted, values for that data during recording.
If this is option is checked, the recognized sensitive data will be replaced.
More information in the link below:
De-identifying Data - https://docops.ca.com/devtest-solutions/10-4/en/using/using-ca-service-virtualization/using-devtest-workstation-with-ca-service-virtualization/de-identifying-data
There is also a De-Identifier data protocol available that can be added in the request side data protocol handler.
More information in the links below:
Data De-Identifier Data Protocol - https://docops.ca.com/devtest-solutions/10-4/en/using/using-ca-service-virtualization/using-devtest-workstation-with-ca-service-virtualization/creating-service-images/using-data-protocols/data-de-identifier-data-protocol