Privacy Policy

The STIG Hardening Tool is committed to protecting your privacy. This policy explains how we handle data you provide when using our service.

Data Collection

We process XCCDF files you upload to parse STIG rules and generate scripts. Uploads are processed in memory and temporary working directories during your session. Parsed rule data is stored briefly in a server-side session file until you generate a script or your session expires (up to 24 hours), then it is deleted.

Contact Submissions

If you use the contact form, your name, email address, and message are written to a server log file so we can review and respond to your inquiry. Messages are not emailed automatically.

Donations

Cryptocurrency donations are sent directly to published wallet addresses. We do not process payment card data or store wallet credentials on our servers. We do not maintain a public donor list unless you ask to be credited via the contact form.

Data Usage

Uploaded files are used solely to parse STIG rules and generate scripts. We do not share, sell, or use your data for other purposes.

Data Security

We implement reasonable security measures to protect your data. However, no online service is completely secure, and you use the tool at your own risk.

Contact Us

For questions about this policy, please contact us.