Privacy Policy
Last updated: June 11, 2026
This Privacy Policy describes how ForgeFile LLC ("we", "our", or "us") collects, uses, and protects your information when you use our AI-powered document automation platform.
ForgeFile is currently operating in a testing and pre-commercial phase. Certain legal or organizational details may be updated upon formal company registration or restructuring.
1. Information We Collect
Account Information
- Name and email address
- Account credentials
- Contact information for support and billing
- Payment information (processed by third-party providers)
User Content
- Files you upload for translation, transcription, or conversion
- Audio and video recordings you submit for processing
- Text content you input for summarization or rewriting
Technical Information
- Device and browser information
- Usage patterns and feature interactions
- Error logs and performance data
2. How We Use Your Information
- Provide and deliver our AI-powered services
- Process your files through our translation, transcription, and conversion systems
- Communicate with you about your account and services
- Provide customer support and respond to inquiries
- Ensure platform security and prevent fraud
- Comply with legal obligations
- Improve our services and develop new features
3. AI and Third-Party Data Processing
Third-Party Service Providers
To deliver our document automation services, your content may be processed by various third-party service providers. These include but are not limited to:
- AI & Language Models: OpenAI, Anthropic, Google AI, Mistral, Cohere, and similar providers
- Translation Services: DeepL, Google Translate, Microsoft Translator, and other translation APIs
- Speech & Audio: Speech-to-text, text-to-speech, and audio transcription services
- Document Processing: OCR, PDF manipulation, file conversion, and format optimization tools
- Image Processing: Image recognition, enhancement, and manipulation services
- Cloud Infrastructure: Cloud computing, storage, and content delivery providers
- Payment & Analytics: Stripe, PayPal, and analytics services
How Third Parties Handle Your Data
Third-party service providers process data in accordance with their own terms and applicable agreements with us. While we require reasonable data protection and confidentiality measures, we do not control and cannot guarantee the independent data handling or retention practices of third-party providers.
ForgeFile is not responsible for the privacy practices, security measures, or data retention policies of third-party services.
AI Training Disclosure
We do NOT use your personal content to train our proprietary AI models. Your uploaded files are processed solely to provide you with the requested service.
Data Processing Locations
Your content may be processed in data centers located in the United States, European Union, or other regions where our third-party providers operate. We ensure appropriate safeguards are in place for all international data transfers.
AI-Generated Communications & Website Content
Some of our website content, support responses, and automated communications may be generated or assisted by artificial intelligence and may contain inaccuracies. Such content is provided for general information only and does not constitute professional advice.
No Solely Automated Decision-Making
We do not make decisions producing legal or similarly significant effects about you based solely on automated processing, within the meaning of Article 22 of the GDPR. AI is used to deliver the services you request, not to evaluate, profile, or make binding decisions about you.
Sensitive Data Disclaimer
We strongly discourage uploading highly sensitive personal data, including but not limited to:
- Medical or health records
- Biometric data
- Government-issued identification numbers
- Financial account credentials
- Confidential legal documents
You acknowledge and agree that any such data is uploaded at your own risk. You are solely responsible for ensuring you have the legal right, consent, and appropriate safeguards to process such data using the Service.
4. Data Security
We implement security measures to protect your data:
- Encryption: Data is encrypted in transit (TLS) and at rest
- Secure Processing: Files are processed in isolated environments
- Access Controls: Strict authentication and authorization
- Monitoring: Security monitoring and incident response
However, no method of transmission over the internet or electronic storage is 100% secure. We cannot guarantee absolute security of your data.
5. Data Retention
- Uploaded Files: Automatically deleted after processing is complete, typically within 24-72 hours, unless extended retention is required for troubleshooting, service reliability, security, or legal compliance.
- Processed Outputs: Available for download for 30 days, then deleted
- Account Data: Retained while your account is active
- Billing Records: Retained as required by law (typically 7 years)
6. Trust & Transparency
We do not sell personal data, monetize user content, or use uploaded files for advertising purposes. User content is processed solely to provide the requested services.
7. Your Rights
Depending on your location, you may have the following rights:
- Access: Request access to your personal data
- Correction: Request correction of inaccurate data
- Deletion: Request deletion of your personal data
- Portability: Request data in a portable format
- Objection: Object to certain processing activities
- Restriction: Request restriction of processing
To exercise these rights, contact us at [email protected]
8. Cookies & Tracking
We use cookies and similar technologies for:
- Authentication and session management
- Remembering your preferences
- Analytics and performance monitoring
- Security and fraud prevention
See our Cookie Policy for details.
9. Third-Party Services
We use third-party services for:
- Payment processing (Stripe, PayPal)
- Analytics (Google Analytics)
- Customer support tools
- Email communications
These services have their own privacy policies. We are not responsible for the privacy practices of third parties.
10. International Data Transfers
Your data may be transferred to and processed in countries other than your own. We ensure appropriate safeguards for international transfers, including:
- Standard Contractual Clauses (SCCs)
- Data Processing Agreements with providers
- Compliance with applicable data protection laws
11. Children's Privacy
Our services are not intended for children under 16. We do not knowingly collect personal information from children under 16. If you believe we have collected information from a child, please contact us immediately.
12. Changes to This Policy
We may update this Privacy Policy periodically. We will notify you of material changes by posting the updated policy and sending email notifications to registered users. Your continued use after changes constitutes acceptance.
13. Contact Us
For questions about this Privacy Policy or our data practices:
14. Additional Information for EU/EEA Users
If you are located in the European Economic Area (EEA), the following additional provisions apply:
- Legal Basis: We process your data based on contract performance, legitimate interests, or your consent
- Data Protection Authority: You have the right to lodge a complaint with your local supervisory authority
15. California Privacy Rights (CCPA/CPRA)
If you are a California resident, you have the following rights under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA):
- Right to Know: Request disclosure of categories and specific pieces of personal information we collect
- Right to Delete: Request deletion of your personal information
- Right to Correct: Request correction of inaccurate personal information
- Right to Opt-Out: Opt out of the sale or sharing of personal information
- Right to Non-Discrimination: We will not discriminate against you for exercising your rights
Do Not Sell or Share My Personal Information: We do not sell your personal information. To opt out of any future sharing for targeted advertising, contact us at [email protected]
To exercise these rights, email us at [email protected] with subject line "CCPA Request".
16. Brazil Privacy Rights (LGPD)
If you are a Brazilian resident, under the Lei Geral de Proteção de Dados (LGPD), you have rights including:
- Confirmation of processing and access to your data
- Correction of incomplete or inaccurate data
- Anonymization, blocking, or deletion of unnecessary data
- Data portability to another service provider
- Revocation of consent
To exercise these rights, contact us at [email protected]