Skip to main content

Security Policy

Responsible disclosure

If you've found a security issue in the ScreenGuardian app, website, downloads, or account system, please report it privately so we can fix it before it is public.

Email: [email protected]
Subject line: security: <short summary>

Please include:

  • What part of ScreenGuardian is affected
  • The version or page involved, if you know it
  • Clear steps to reproduce the issue
  • What you believe the impact could be

We acknowledge every report within 3 business days and aim to ship a fix or mitigation within 30 days for high-severity issues.

Please do not access other people's accounts, data, devices, or infrastructure while testing. We will not take legal action against researchers who follow this policy in good faith.

What is in scope

  • The ScreenGuardian desktop app
  • ScreenGuardian account and access flows
  • Downloads and updates distributed through the official website
  • The ScreenGuardian website

What is out of scope

  • Social engineering or phishing
  • Denial-of-service testing
  • Issues in third-party services that do not directly affect ScreenGuardian users
  • Reports that require physical access to someone else's device

Download safety

Only download ScreenGuardian from the official website. If your operating system shows an installation warning, make sure the download came from this site before continuing.

ScreenGuardian downloads are available to accounts with active early access, an explicit access grant, or paid access. Updates are signed, and the desktop app checks those signatures before installing updates.

If you believe downloads, updates, invites, or account access can be bypassed, please report it under the responsible disclosure process above.

Your device environment

ScreenGuardian is not antivirus or endpoint protection. It cannot secure a device that is already compromised by malware, a stolen account session, malicious browser extensions, vulnerable drivers, or other third-party software.

To reduce risk, keep your operating system and browser updated, install apps only from trusted sources, avoid running unknown scripts, and use the security tools that are appropriate for your device. ScreenGuardian's responsibility is to keep the ScreenGuardian app, website, downloads, update feed, and account flows reasonably secure; it is not a general-purpose security product for the rest of the computer.

Diagnostic data

ScreenGuardian does not send camera frames, screenshots, posture history, distance history, habit history, microphone audio, typed content, or raw local files automatically. Manual support reports are user-submitted, and crash reports are sent only after the user turns Crash Reports on in the app.

If you find a path that sends more data than the UI or Privacy Policy describes, please report it as a security issue.