Privacy Policy
1. Introduction
At DevShield, we take your privacy seriously. This privacy policy explains how we collect, use, and protect your data—or more accurately, how we specifically do not collect or store your private data.
2. Zero-Knowledge Password Checking
Our Credential Leak Monitor uses a strict zero-knowledge architecture. All passwords typed into our application are hashed via SHA-1 directly in your browser. We only send the first 5 characters of this hash to third-party databases, ensuring your password never leaves your device.
3. Email Checking
When scanning for email breaches, your email acts solely as a query parameter strictly proxied to external databases. We do not store, log, or save any email addresses searched on this platform.
4. Third-Party Services
DevShield proxies requests to third-party APIs (including npm APIs, GitHub, and credential endpoints). Please note that these services operate under their respective privacy policies.
5. Local Storage
We use browser LocalStorage sparingly to save your theme preferences and recent searches for convenience, none of which is tracked persistently on our backend.
Last updated: April 2026