Safegrd is an on-prem DLP and activity platform for Windows. Real-time monitoring, clipboard & USB control, site & app tracking, professional PDF reports — all running on your own server.
Install the admin on your computer, point it at a Linux server, and Safegrd provisions a 7-day trial automatically during SSH install. No signup required.
After install, the admin guides you through connecting a Linux server over SSH — that one-step setup provisions the 7-day trial. No email, no company name, no forms.
One agent on the endpoint, one server on-prem — full telemetry, full control.
Work / break / custom statuses tracked second-by-second with a live monitoring board.
See every copy-paste, every USB plug-in and file copy — with previews and blocking rules.
Periodic screenshots with quality tiers, captured text per app — with per-user opt-out.
Work time & statuses, file movement, top apps — localized PDF exports in one click.
Transparent HTTPS inspection captures every visited domain — works with Chrome, Edge, Firefox.
Org structure with work hours per group, super- and limited-admins with granular permissions.
Ask in plain language — the built-in assistant pulls the numbers, builds tables and exports PDF reports for you.
Keep screenshots on the server disk or connect any S3-compatible bucket (AWS, MinIO, DigitalOcean, R2, Wasabi) — with usage forecast and test connection.
Safegrd is fully self-hosted. Nothing leaves your network. No vendor can read your screenshots, your clipboard, or your employees' private data — because there is no vendor in the loop.
Self-hosted licences. No SaaS surcharge.
In a PostgreSQL database on your own Linux server. Screenshots are kept on local disk (or an S3 bucket you control). Nothing is shipped to any third-party cloud.
Yes. The client has a SQLite buffer and keeps recording activity, clipboard and USB events. Once the server comes back online, everything is flushed with gzip-compressed batches.
Windows 10 and 11, 64-bit. The agent runs as a per-user process and starts via Task Scheduler (with Run-key fallback).
The agent runs quietly in the background without any interface. We strongly recommend informing employees in your company policy that activity is monitored — this is a legal requirement in most countries.
The assistant only sees structured query results pulled through our server (user lists, status totals, file-transfer summaries) — never raw database rows, screenshot bytes, or credentials. It can't execute writes or deletions. The scope of its answers is locked to your admin panel; off-topic questions are refused.
Drop us a line — we'll set up a 30-minute live demo on our sandbox server.