Privacy Policy

At DevForge, we take your privacy seriously. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our platform and services.

1. Information We Collect

1.1 Information You Provide

We collect information you provide directly to us, including:

• Account Information: When you create an account, we collect your name, email address, password, and organization name.
• Payment Information: When you subscribe to a paid plan, our payment processor collects your payment card details. We do not store full payment card numbers.
• Profile Information: You may provide additional information such as your job title, company, and profile picture.
• Communications: When you contact us, we collect the content of your messages and any attachments.

1.2 Information We Collect Automatically

When you use our services, we automatically collect:

• Usage Data: API calls, request/response metadata, error logs, and feature usage patterns.
• Device Information: IP address, browser type, operating system, and device identifiers.
• Log Data: Access times, pages viewed, and referring URLs.
• Cookies: We use cookies and similar technologies to maintain sessions and preferences.

2. How We Use Your Information

We use the information we collect to:

• Provide, maintain, and improve our services
• Process transactions and send related information
• Send technical notices, updates, and support messages
• Respond to your comments, questions, and requests
• Monitor and analyze trends, usage, and activities
• Detect, investigate, and prevent security incidents
• Personalize and improve your experience
• Comply with legal obligations

3. Information Sharing

We do not sell your personal information. We may share information in the following circumstances:

• Service Providers: With third-party vendors who perform services on our behalf (payment processing, hosting, analytics).
• Legal Requirements: When required by law or to protect our rights and safety.
• Business Transfers: In connection with a merger, acquisition, or sale of assets.
• With Your Consent: When you explicitly authorize us to share information.

4. Data Security

We implement industry-standard security measures to protect your data:

• All data is encrypted in transit using TLS 1.3
• Data at rest is encrypted using AES-256
• Regular security audits and penetration testing
• SOC 2 Type II certified infrastructure
• Role-based access controls and audit logging
• 24/7 security monitoring and incident response

5. Data Retention

We retain your information for as long as your account is active or as needed to provide services. You can request deletion of your account and associated data at any time. Some information may be retained for legal compliance or legitimate business purposes.

6. Your Rights and Choices

Depending on your location, you may have the following rights:

• Access: Request a copy of your personal data
• Correction: Update or correct inaccurate information
• Deletion: Request deletion of your personal data
• Portability: Receive your data in a portable format
• Objection: Object to certain processing activities
• Opt-out: Unsubscribe from marketing communications

7. Cookies and Tracking

We use the following types of cookies:

• Essential Cookies: Required for the service to function properly
• Functional Cookies: Remember your preferences and settings
• Analytics Cookies: Help us understand how you use our service

You can control cookies through your browser settings. Disabling certain cookies may affect functionality.

8. International Data Transfers

Your information may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place, including Standard Contractual Clauses approved by the European Commission.

9. Children's Privacy

Our services are not directed to individuals under 16. We do not knowingly collect personal information from children. If we learn we have collected information from a child, we will delete it promptly.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new policy on this page and updating the "Last updated" date. Your continued use of our services after changes constitutes acceptance.

11. Contact Us

If you have questions about this Privacy Policy or our privacy practices, please contact us:

12. Additional Information for Specific Regions

12.1 European Economic Area (EEA)

If you are in the EEA, our legal basis for processing your information includes:

• Performance of a contract with you
• Our legitimate business interests
• Compliance with legal obligations
• Your consent (where applicable)

You have the right to lodge a complaint with your local data protection authority.

12.2 California Residents

Under the California Consumer Privacy Act (CCPA), California residents have additional rights including the right to know what personal information is collected and the right to request deletion. We do not sell personal information as defined by the CCPA.