🔒 FOR SELLERS

Security & Privacy for Sellers

Zero-Trust Architecture. Zero Code Exfiltration.

We understand that your source code is your most valuable intellectual property. You should not have to upload it to a third-party cloud to prove its quality.

Vigilcap utilizes a "Local-First" architecture designed to respect your data sovereignty while providing transparency to the buyer.

FAQ 01

Do you upload my code to the cloud?

No.

Our scanning engine runs locally. The analysis happens in ephemeral memory (RAM) on your infrastructure (or a secured neutral environment). Your raw source code files are never transmitted to Vigilcap servers, never stored, and never seen by our human analysts.

FAQ 02

Do you use my code to train AI?

Absolutely not.

Our probabilistic models are pre-trained. We strictly prohibit the use of client data for model fine-tuning. Your IP remains yours. We audit the metadata (complexity, patterns, security), not the trade secrets.

FAQ 03

What data does the buyer see?

The buyer receives a High-Level Risk Assessment.

They See:

"Technical Debt Ratio: 15%"
"Database Complexity Score: High"
"License Risk: 2 GPL Violations"

They Do NOT See:

Your algorithms
Your customer lists
Your specific logic implementation

FAQ 04

How secure is the process?

We utilize HMAC-SHA256 Cryptographic Signing for all reports.

This protects you as much as the buyer. It ensures that the report reflects exactly what was scanned at that moment in time, preventing anyone from altering the results later to manipulate the deal price.

FAQ 05

I don't want to run an EXE file. What are my options?

We support multiple engagement models:

🎥 Guided Zoom Audit

We jump on a call, you run the scan while screen-sharing (code remains on your screen), and the report is generated instantly.

🧪 Clean Room

We can scan a specific "Audit Branch" of your Git repository in a temporary, isolated container.