/privacy

The short version

ShieldScope does not collect, store, or share any personal information about you. No accounts. No tracking. No cookies. We built tools we'd want to use ourselves, and that means not treating you as a data source.

How scans work

When you submit a URL or domain, our server makes an outbound request to that target on your behalf and returns the result. We do not log what you submitted, store the results, or link requests to your IP address. The scan is stateless — once the response is returned to your browser, it's gone.

What we do not collect

• No analytics or tracking pixels
• No cookies of any kind
• No browser fingerprinting
• No account registration or email collection
• No behavioral or usage data
• No third-party scripts (no Google Analytics, no CDN-hosted libraries)

Server logs

Our web server (Nginx) writes standard access logs containing IP addresses and timestamps. This is a default behavior of every web server on the internet. These logs are stored on the server, are not shared with any third party, and are rotated automatically. We do not analyze or correlate them.

Third parties

None. ShieldScope is self-hosted on a Hetzner VPS. There are no third-party analytics services, advertising networks, or data processors involved in operating this site.

GDPR

If you are in the European Union: because we do not collect personal data beyond transient server logs, there is no data subject request process needed. There is nothing to request, correct, or delete. Standard server logs are a legitimate interest under GDPR Article 6(1)(f) and are not used for profiling.

Changes

If this policy ever changes meaningfully, the updated version will be published here. Given that our data model is "collect nothing," there is not much room for change.