Privacy Policy
The STIG Hardening Tool is committed to protecting your privacy. This policy explains how we handle data you provide when using our service.
Data Collection
We process XCCDF files you upload to parse STIG rules and generate scripts. Uploads are processed in memory and temporary working directories during your session. Parsed rule data is stored briefly in a server-side session file until you generate a script or your session expires (up to 24 hours), then it is deleted.
Contact Submissions
If you use the contact form, your name, email address, and message are written to a server log file so we can review and respond to your inquiry. Messages are not emailed automatically.
Donations
Cryptocurrency donations are sent directly to published wallet addresses. We do not process payment card data or store wallet credentials on our servers. We do not maintain a public donor list unless you ask to be credited via the contact form.
Data Usage
Uploaded files are used solely to parse STIG rules and generate scripts. We do not share, sell, or use your data for other purposes.
Data Security
We implement reasonable security measures to protect your data. However, no online service is completely secure, and you use the tool at your own risk.
Contact Us
For questions about this policy, please contact us.