Data Minimization

Collecting only the minimum amount of data required to detect threats, and nothing more.

A security tool should not become a surveillance tool. Arx is architected to perform the majority of its analysis locally on the device to avoid sending sensitive browsing history to the cloud.

What We DO NOT Collect

Keystrokes

We never record what you type. Passwords, credit card numbers, and emails stay on your device.

Form Data

The content of forms (emails, messages, documents) is never analyzed or transmitted.

Full History

We do not keep a log of "Safe" sites. If a user visits a safe site (e.g., Wikipedia), that event is discarded.

Privacy Scrubbing

When a URL does need to be sent to the cloud for analysis (because it is unknown and suspicious), we apply rigorous scrubbing techniques first.

  • Query Parameter Stripping: URLs often contain sensitive tokens (e.g., ?session_id=12345). We strip all query parameters unless they are known tracking parameters needed for threat analysis.