Privacy & Security

Your Code Never Leaves
Your Machine

We built this tool specifically for enterprises where data security is non-negotiable. No upload. No cloud. No exceptions.

Design Philosophy

Why We Built It Offline First

Enterprise source code is among the most sensitive intellectual property a company owns. We knew from day one that any tool requiring a cloud upload would be a non-starter for the organizations that need it most.

NDA and Contractual Obligations

Many enterprise codebases are subject to non-disclosure agreements, government contracts, or client confidentiality clauses. Uploading source code to any third-party service — even for analysis — could constitute a breach. Our analyzer never touches a network, so you stay compliant.

Competitive Intelligence Risk

Your codebase contains your business logic, your algorithms, and years of institutional knowledge. Sending it to a cloud service — even one with good intentions — creates a copy that exists outside your control. We eliminate that risk entirely by keeping everything local.

Regulated Industries and Air-Gapped Networks

Finance, healthcare, defence, and government sectors often operate on networks with strict outbound traffic controls or full air-gap policies. The analyzer is a single self-contained EXE — it runs on any Windows 10/11 machine, including ones with no internet access at all.

Windows Security Prompt

The Windows SmartScreen Warning

When you first run the analyzer, Windows may show a blue or grey dialog with the message "Windows protected your PC". This is expected. Here is exactly what to do and why it happens.

Step-by-Step: How to Run the Analyzer

  1. 1
    Download the EXE

    Save SmartAIModernization.exe anywhere on your machine — Desktop, Downloads, a network share. No installer is needed.

  2. 2
    Double-click to run it

    Windows SmartScreen will intercept and show a blue or grey dialog saying "Windows protected your PC."

  3. 3
    Click "More info"

    You will see a small link labelled "More info" in the bottom-left of the dialog. Click it. The dialog will expand to show the publisher name and an additional button.

  4. 4
    Click "Run anyway"

    The analyzer will launch immediately. You will see a welcome screen confirming offline-only operation before you select any folder.

Why Does This Warning Appear?

Windows SmartScreen checks every downloaded EXE against a database of known publishers. Software gets "known" status through a commercial code-signing certificate — a cryptographic credential issued by certificate authorities such as DigiCert or Sectigo. These certificates cost several hundred dollars per year and take time to obtain and configure for a new product.

Smart AI Modernization is new software. We have not yet purchased and deployed a code-signing certificate. This is entirely normal for new tools — the warning is a reflection of our certificate status, not of any malicious intent. Established commercial software goes through the same process when it is brand new.

We are in the process of acquiring a certificate. Once it is in place, the SmartScreen dialog will no longer appear for our EXE. Until then, the "More info → Run anyway" path is the correct procedure.

The Code Is Open for Inspection

If your security team requires it, we are happy to share the source code for review prior to running the EXE in your environment. Contact us and we will arrange access. Transparency is the whole point.

Privacy Guarantees

Four Promises We Keep
Every Time You Run the Tool

🔌

No Network Calls

The EXE makes zero outbound network connections — not on startup, not during scanning, not after generating reports. You can verify this with any network monitor or run it on a machine with no network adapter at all. We will never be able to receive your data because we never try to contact us.

📡

No Telemetry

We collect no usage metrics, no crash reports, no feature analytics, and no system information. There is no anonymous telemetry, no opt-in or opt-out toggle, and no background process. When the window closes, the tool is completely gone from memory — it leaves no agents or services behind.

🚫

No Data Sharing

Your source code, project structure, file names, class names, dependency lists, and any other information derived from your codebase are never shared with us, with third parties, or with any cloud service. The data exists on your machine and nowhere else — before, during, and after the scan.

📁

Local Reports Only

The two HTML reports generated by the tool are written to a folder you choose on your local machine or network drive. They are self-contained HTML files that open in any browser without an internet connection. You decide who sees them — share them by email, a shared drive, or print them. They never touch our servers.

Common Questions

Frequently Asked Questions

Can I run it on a classified or air-gapped network?

Yes. The analyzer is a single self-contained EXE with no runtime dependencies and no outbound network requirements. You can copy it to a USB drive, carry it into an air-gapped environment, and run it normally. It does not attempt DNS lookups, license checks, or any form of external communication. This was an explicit design requirement — many of our target customers operate in regulated environments with strict network controls.

Does it phone home?

No. There is no "phone home" mechanism of any kind. The EXE opens a UI window, lets you pick a folder, performs a local file-system scan, and writes two HTML files. That is the entirety of what it does. You can run it through a network monitor such as Wireshark or Process Monitor and observe zero outbound connections. If your security team wants to verify this before deployment, we encourage it.

What does the analyzer actually read?

The tool reads the following files within the folder you select:

  • Solution files (.sln)
  • Project files (.csproj, .vbproj)
  • Source code files (.cs, .vb, .aspx, .ascx, .master)
  • Package references (packages.config, NuGet references embedded in project files)
  • Compiled assemblies in /bin folders for DLL version detection

It does not copy, store, or transmit any of these files. It reads them in memory, extracts metadata (file counts, line counts, library references, framework targets), and discards the content. Your business logic never persists anywhere outside the original files.

Where are the reports saved?

You choose the output folder when you run the tool. By default it suggests a folder next to the solution you scanned, but you can direct the output anywhere — a local folder, a network share, an external drive. Two files are created:

  • technical-report.html — for your development team and architects
  • business-report.html — for your CTO, IT Director, or executive sponsors

Both reports are fully self-contained HTML files. They use no external CDN resources, no web fonts loaded from the internet, and no JavaScript that requires connectivity. You can email them, put them on a USB drive, or open them in a browser with no network access.

Ready to Start

Confident in Our Privacy Commitment?
Download and See for Yourself.

Run it on an isolated machine if you like. Point a network monitor at it. We have nothing to hide.

Download for Windows

Windows 10/11 · 64-bit · ~15 MB · Free

Questions? Talk to us first →