ForgeTrack
22 لغة
ابدأ Free
E Legal

Privacy Policy

Effective Date: April 6, 2026 · Last Updated: April 6, 2026

Edson Technologies (“we,” “us,” or “our”) operates the ForgeTrack platform, including the website forgetrack.io, the application at app.forgetrack.io, and all related subdomains (collectively, the “Service”). This Privacy Policy describes how we collect, use, disclose, and protect your personal information when you interact with our Service.

1. Information We Collect

Information you provide directly:

  • Name, email address, and account credentials
  • Company or workspace name
  • Project, phase, and work item descriptions you enter into the platform
  • Engineering session notes, decisions, and artifact metadata
  • Billing information processed through Stripe (we do not store payment card numbers directly)
  • Communications you send to us or through the platform

Information collected automatically:

  • IP address and approximate geographic location
  • Browser type, device type, and operating system
  • Pages visited, features used, API calls made, and interaction timestamps
  • Session cookies required for authentication

Information from third parties:

  • Identity and authentication data from Microsoft Entra External ID
  • Git repository metadata (commit messages, file change counts, contributor data) when you connect a GitHub repository

2. How We Use Your Information

  • Provide, maintain, and improve the ForgeTrack platform
  • Generate AI-powered effort estimations, R&D documentation, and engineering analytics
  • Process subscription billing and manage your account
  • Send transactional communications (receipts, quota alerts, report delivery)
  • Verify your identity and prevent unauthorized access
  • Generate IRS R&D tax credit documentation and investor reports based on your project data
  • Provide customer support and respond to inquiries
  • Comply with legal obligations and enforce our terms

3. AI Processing

ForgeTrack uses artificial intelligence to estimate engineering effort, score technical complexity, generate R&D documentation narratives, and provide recommendations. AI processing is powered by Anthropic Claude and other AI providers you configure, operating within the infrastructure of those respective providers under their data processing agreements.

AI-generated outputs always include confidence indicators. Your project data used for AI estimation is processed transiently — we do not use your proprietary project descriptions to train AI models without your explicit consent.

4. Data Sharing and Disclosure

We do not sell your personal information. We share information only in the following circumstances:

  • Service providers: Microsoft Azure (hosting, authentication, email delivery), Stripe (payment processing), Anthropic and other AI providers you configure — all under strict contractual obligations
  • GitHub integration: When you connect a repository, ForgeTrack reads commit and file change data via the GitHub API using only the permissions you grant
  • Legal requirements: When required by law, regulation, legal process, or governmental request
  • Business transfers: In connection with a merger, acquisition, or sale of assets, with notice to affected users
  • With your consent: When you explicitly authorize sharing, such as generating a public investor share link for a project

5. Multi-Tenant Data Isolation

ForgeTrack is a multi-tenant platform. Every piece of data you store is scoped to your workspace and is never accessible to other workspaces. Tenant isolation is enforced at every layer — database queries, API endpoints, and report generation all filter strictly by your tenant identifier.

6. Data Security

  • TLS 1.2+ encryption for all data in transit
  • Encryption at rest via Azure SQL Transparent Data Encryption
  • Azure Key Vault for secure storage of secrets and credentials
  • Role-based access controls enforced at the API layer
  • Audit logging of all authentication events and report generation

7. Cookies and Tracking

We use only essential cookies required for the platform to function. We do not use third-party advertising cookies, tracking pixels, or analytics that share data with advertisers.

  • Session cookies: Maintain your authentication state (managed by Microsoft MSAL)
  • Preference cookies: Store your language and UI preferences

8. Billing Data

Subscription billing is processed by Stripe, Inc. ForgeTrack does not store your payment card numbers or bank account details. We retain billing records for tax and accounting compliance.

9. Data Retention

We retain your data for as long as your account is active. If you delete your account, your project data will be deleted within 30 days, subject to legal retention requirements. Billing records are retained for 7 years in accordance with accounting regulations.

10. Your Rights

  • Access the personal information we hold about you
  • Correct inaccurate or incomplete information
  • Delete your personal information (subject to legal retention requirements)
  • Export your project data in JSON, CSV, XLSX, or PDF format via the platform’s built-in export
  • Restrict or object to certain processing activities
  • Withdraw consent where processing is based on consent

To exercise these rights, contact us at privacy@forgetrack.io.

11. Children’s Privacy

ForgeTrack is intended for use by businesses and professional developers. We do not knowingly collect personal information from individuals under 18 years of age.

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy on this page with a revised “Last Updated” date and, where appropriate, by email. Your continued use of the Service after changes constitutes acceptance of the updated policy.

13. Contact Us

Edson Technologies
Email: privacy@forgetrack.io
Website: forgetrack.io