Last updated: May 15, 2026
We collect the information you provide when creating an account: your name, email address, company name, and password (stored as a secure hash). We also collect usage data (login timestamps, audit events) to support platform operation and security.
Your data is used solely to operate and improve WorkForge. This includes: authenticating your identity, displaying your workspace data, sending transactional emails (verification, password reset, job notifications), and monitoring platform health.
Each business workspace on WorkForge is completely isolated. Users can only access data belonging to their own organization. WorkForge employees do not access tenant data except as required to provide support or resolve platform issues.
WorkForge uses the following third-party services: Resend (email delivery), Railway (cloud infrastructure and database hosting), Sentry (error monitoring), and Anthropic (AI-powered platform health summaries). Each of these services processes data under their own privacy policies and our data processing agreements.
Active account data is retained for as long as your workspace exists. Upon account deletion, all data is permanently removed within 30 days. You may request a data export at any time by contacting [email protected].
Passwords are hashed using bcrypt. Sessions are stored as signed JWT tokens in HTTP-only cookies. All data is transmitted over HTTPS. We use industry-standard practices to protect your information.
You have the right to access, correct, or delete your personal data at any time. To exercise these rights, contact us at [email protected]. We will respond within 30 days.
WorkForge uses a single HTTP-only session cookie (wf_session) to maintain your login state. We do not use tracking or advertising cookies.
For privacy questions or data requests, contact: [email protected]