Records Discovery & Compliance Scanner

TrailBlazer Consulting, LLC

Effective Date: April 1, 2026  |  Last Updated: April 1, 2026

TrailBlazer Consulting, LLC (“we,” “us,” or “our”) operates the Records Discovery & Compliance Scanner application (the “App”). This Privacy Policy describes what data the App accesses, how it is stored, and your rights regarding that data.

We designed this App with privacy as a core principle. All data processing happens locally on your device. We do not collect, transmit, or have access to any of your data.

1. Data Collection

The App collects and stores zero personal data on any server. All scan results, file classifications, audit logs, user profiles, and application preferences are stored exclusively in your browser’s local IndexedDB database on your device. No telemetry, analytics, usage tracking, or behavioral profiling of any kind is performed.

2. File Access

When you select files or folders for scanning, the App reads only:

  • File metadata — file name, file path, file size, creation date, modification date, and MIME type
  • A small text sample — up to 20KB of text content using sandwich sampling (first 10KB + middle 5KB + last 5KB) for classification purposes only

The App never copies, uploads, moves, renames, modifies, or deletes any of your files. File access is initiated only when you explicitly select a folder through the browser’s native file picker dialog. The App does not access files outside of your selected folder.

3. Cloud Storage Scanning (Optional)

The App includes an optional Azure Blob Storage connector that allows you to scan files stored in your own cloud storage account. When you use this feature:

  • All communication occurs directly between your browser and your Azure storage account
  • Credentials (SAS tokens or connection strings) you provide are stored locally in your browser’s IndexedDB — they are never transmitted to TrailBlazer Consulting or any third party
  • No file data from your cloud storage passes through our servers

You can disconnect cloud sources and delete stored credentials at any time from within the App.

4. Network Activity

The App makes no outbound network requests with your file data. All fonts and application assets are bundled directly into the App — no external CDN requests are made during normal operation.

The only planned network activity is:

  • Compliance rule updates (for paid subscribers only) — a version number comparison request to check if newer regulation keyword libraries are available. This request transmits zero file data, zero scan results, and zero personal information. It sends only the currently installed rule version number.
  • Azure Blob Storage requests (user-initiated only) — direct communication between your browser and your own Azure storage account, as described in Section 3.

5. In-App Purchases

The App offers optional paid features through the Microsoft Store commerce system:

  • Pro ($24.99 one-time) — unlocks unlimited file scanning, additional export formats, custom rules, scan profiles, executive dashboard, and admin console
  • Compliance Updates Subscription ($9.99/month or $79.99/year) — delivers monthly regulation keyword and pattern updates

All purchases are processed exclusively through the Microsoft Store. We do not collect or store any payment information. Purchase history and license status are managed by Microsoft’s commerce platform.

6. Third Parties

No data is shared with any third party. The App contains:

  • No advertising SDKs or ad networks
  • No analytics services (Google Analytics, Mixpanel, etc.)
  • No external tracking scripts or pixels
  • No social media integration or sharing features
  • No crash reporting services that transmit data externally

7. User Profiles

The App includes a local user profile system that associates scan results with the person who ran them. This is not authentication — no passwords are collected, and no credentials are validated against any server. Profile data (name, department, phone, email, and role) is stored locally in IndexedDB on your device and is never transmitted anywhere.

8. Data Retention and Deletion

Since all data is stored locally on your device, you have complete control over it:

  • Purge All Data — the App includes a “Purge All Data” function in the Trust & Transparency panel that permanently deletes all scan results, classifications, profiles, audit logs, certifications, destruction records, custom rules, and application preferences
  • Uninstalling the App removes all stored data from your device
  • Clearing browser data (for the App’s origin) also removes all stored data

We have no ability to access, recover, or restore your data because it never leaves your device.

9. Children’s Privacy

The App is a professional business tool designed for records managers, compliance officers, and IT governance teams. It is not directed at children under the age of 13 (or applicable age of consent in your jurisdiction). We do not knowingly collect any information from children.

10. Security

The App employs the following security measures:

  • All data stored in IndexedDB is encrypted at rest by the browser’s built-in encryption
  • The App includes a code integrity verification feature (SHA-256 hash of the application source) that allows you to verify the App has not been tampered with
  • A complete audit trail logs every action with timestamps, which you can export for compliance documentation
  • The Trust & Transparency panel provides full visibility into the App’s data access, storage, and network behavior

11. Your Rights

Because all data is stored locally on your device and we have no access to it, traditional data subject rights (access, correction, deletion, portability) are fully under your control at all times. You do not need to contact us to exercise these rights — you can view, export, or delete all data directly within the App.

If you are located in the European Economic Area, United Kingdom, or California, the relevant data protection regulations (GDPR, UK GDPR, CCPA/CPRA) apply to any personal data you process using this App. However, since we act as neither a data controller nor a data processor for your data — it never reaches us — your obligations under these regulations relate to your own use of the App within your organization.

12. Changes to This Policy

We may update this Privacy Policy from time to time. Changes will be reflected in:

  • The “Last Updated” date at the top of this page
  • The in-app Privacy Policy (updated through Microsoft Store app updates)

We encourage you to review this page periodically. Continued use of the App after changes constitutes acceptance of the updated policy.

13. Contact Us

If you have any questions about this Privacy Policy, the App’s data practices, or your rights, please contact us:

TrailBlazer Consulting, LLC
Email: info@trailblazer.us.com
Website: trailblazer.us.com

© 2026 TrailBlazer Consulting, LLC. All rights reserved.

Records Discovery & Compliance Scanner is a trademark of TrailBlazer Consulting, LLC.