Zero network egress

ShadowCRM makes no outbound connections during normal use. No telemetry, no analytics pings, no silent sync. You can run it with your firewall blocking all traffic — it won't care.

Local SQLite database

Your data is a single .db file on your disk. No proprietary format, no vendor lock-in. Open it with any SQLite browser. Back it up with cp. Migrate it with any tool you trust.

Opt-in encrypted backup

When you choose to enable cloud backup, your database is encrypted with AES-256 on your device before any byte leaves it. We hold no keys. Even a full breach of our servers yields nothing readable.

Open audit surface

The local sync and encryption layers are open-source. Read the code. Run it in a sandbox. We want you to verify our claims, not just believe them.

GDPR compliant by design

When data never leaves your machine, there's no data processor relationship to worry about. No DPA required, no Schrems II exposure, no consent banners for your own CRM.

No account, no exposure

Creating an account means handing over an email address, creating a target. ShadowCRM works fully without one. There's no user database of yours for us to lose.