Data Privacy & Security
Your GPO data never leaves your browser
All XML parsing and analysis runs entirely client-side using JavaScript. No data is uploaded to any server during analysis.
Why GPO Data Is Sensitive
Group Policy XML exports can contain highly sensitive infrastructure information about your Active Directory environment, including:
Identity & Access
- Active Directory domain names
- Security Identifier (SID) values
- User and group account names
- Password policy configurations
- User rights assignments
Infrastructure
- Internal server names and UNC paths
- Network drive mappings
- Printer server paths
- Internal IP addresses
- Registry keys and values
Security Posture
- Firewall rules and exceptions
- Script paths and executables
- Software deployment sources
- Security option configurations
- Audit policy settings
Organizational
- OU structure and naming
- GPO link hierarchy
- Site and domain topology
- Organizational naming conventions
- Internal operational procedures
How We Protect Your Data
1. Client-Side Processing
When you upload an XML file, it is read directly by your browser using the FileReader API. The XML is parsed using the browser's built-in DOMParser, and all analysis (conflict detection, duplicate finding,
setting explanation) runs in JavaScript on your machine. The raw XML is never
transmitted over the network.
2. Data Redaction
If you choose to save a report to your account, the data is automatically redacted before leaving your browser. The following patterns are stripped:
| Data Type | Example | After Redaction |
|---|---|---|
| UNC Paths | \\fileserver01\shares\dept | [REDACTED-PATH] |
| File Paths | C:\Scripts\logon.bat | [REDACTED-PATH] |
| SIDs | S-1-5-21-3623811015-... | [REDACTED-SID] |
| FQDNs | dc01.corp.contoso.com | [REDACTED-HOST] |
| IP Addresses | 10.0.1.50 | [REDACTED-IP] |
| Emails | admin@corp.local | [REDACTED-EMAIL] |
3. What We Store (If You Opt In)
Saved reports include GPO names, setting names and values, category labels,
conflict and duplicate details, link paths, and explanations — all with sensitive
infrastructure data redacted using the patterns above. Domain names, GUIDs, SIDs,
internal hostnames, and file paths are replaced with [REDACTED-...] placeholders before anything leaves your browser.
If the report data is too large, settings and explanations are progressively trimmed to fit storage limits while preserving the most important conflict and duplicate analysis.
4. Self-Hosted Option
Open Source
Portions of GPO Analyzer will be made open source so you can inspect how your data is processed. Details coming soon.
Questions?
If you have concerns about data handling or need a security review for your organization, please reach out. We're happy to provide detailed technical documentation about our data processing pipeline.