SovereignShield operates on a zero-trust security model. We believe that compliance claims should be programmatically verifiable. Below is an audit guide to inspect the local state behavior of this application.
1. Network Activity Audit
To verify that no telemetry packets leave your system when interacting with the matrix:
- Right-click anywhere on the dashboard and select Inspect, or press F12.
- Select the Network tab in the developer console.
- Toggle various compliance checkboxes in the GDPR or HIPAA lists.
- Verify that no network requests (XHR, Fetch, or WebSockets) appear in the list.
2. Local Storage Inspection
The application saves checklist variables directly to browser sandbox cache. You can view this state ledger at any time:
- Open DevTools and select the Application (or Storage) tab.
- Expand the Local Storage group and select
http://localhost:4321(or your deployment origin). - You will see active state key-value entries:
gdpr-1togdpr-6(boolean value states)hipaa-1tohipaa-6(boolean value states)
3. Compilation Integrity
When generating JSON exports, the file is created directly via raw browser memory manipulation using the Blob stream constructor. No cloud compilation microservices are targeted. The SHA-256 local integrity labels within the exported file are signed client-side to verify the file contents were not modified outside the application.