Trust & Security
How ShadowDNS handles your data.
Factual answers to the questions DNS, networking, and homelab users ask before uploading a log.
How your data is handled
- 01
Select a file
Your DNS export is read locally by your browser. The raw file is never sent to ShadowDNS servers.
- 02
Local parsing
Parsing and analysis run in your browser. Only the resulting report data is sent to ShadowDNS.
- 03
Report generated
The generated report is stored so it can be viewed through its unique link.
- 04
View by link
Reports are accessed through a unique, non-guessable URL until they expire.
Raw DNS exports are processed locally in your browser and are not stored server-side. DNS data is not sold, shared, or used to train AI models.
Key fact
Raw DNS exports are processed locally in your browser and are not stored server-side.
How ShadowDNS handles data
- Raw DNS exports are not transmitted to ShadowDNS servers.
- Only generated report data is stored so reports can be viewed later.
- DNS data is not used for AI training or model improvement.
- DNS data is not sold, shared, or provided to third parties.
- Application traffic uses HTTPS/TLS.
Report retention
- Generated reports are stored so they can be viewed through their unique report link.
- Expired reports are no longer accessible through the application.
- Deletion requests can be submitted to hello@shadowdns.org.
Additional information
- What happens when I select a file?
- The file is parsed and analyzed in your browser. Only the resulting report data is sent to ShadowDNS so it can be viewed through its unique link.
- How are reports protected?
- Reports use unique identifiers with cryptographically generated access tokens. They cannot be accessed through predictable URLs and require possession of the report link.
- Can I request report deletion?
- Yes. Email hello@shadowdns.org and the associated report will be removed.
More questions
Additional questions? View the FAQ.
Questions about privacy, security, or data handling?
hello@shadowdns.org