← Back to FORGE

Privacy Policy

Last updated: May 2026

The Short Version

✓ Your health, financial, and personal data is stored only on your device — in your browser's local storage.

✓ We have no database of user data. We cannot access, sell, or lose your data because we never have it.

✓ When you use Oracle AI, the text of your query and an anonymised summary of your data is sent to Anthropic's API. Anthropic does not store this beyond the request. Your name is never sent.

✓ If you subscribe to Pro, Stripe handles your payment. We never see your full card number.

✓ Vercel Analytics collects anonymous aggregate page view data (no cookies, no fingerprinting, GDPR compliant).

1. What We Collect

Data You Log in FORGE

All data you log — sleep, HRV, workouts, nutrition, transactions, goals, habits, journal entries — is stored exclusively in your browser's localStorage. This data never leaves your device unless you explicitly choose to export it or send a query to Oracle.

Oracle AI Queries

When you send a message to Oracle, we transmit: (1) your message text, and (2) an anonymised summary of your FORGE data (aggregate scores, recent trends — not individual transactions or personal identifiers). This is sent to Anthropic's Claude API for processing. Anthropic's privacy policy governs how they handle API data. We do not log or store these queries on our servers.

Payment Information

Pro subscriptions are processed by Stripe. We receive a Stripe customer ID and subscription status. We never see your full card number, CVV, or bank account details.

Analytics

We use Vercel Analytics for anonymous aggregate page view data. No cookies are set. No IP addresses are stored. No individual user is tracked. This is GDPR compliant by design.

2. What We Don't Collect

  • We do not collect your name (unless you provide your email for our newsletter)
  • We do not track individual users across sessions
  • We do not use advertising cookies or third-party trackers
  • We do not sell data — there is no data to sell
  • We do not have a user database with your health or financial records

3. Your Rights (GDPR)

Under GDPR, you have the right to access, correct, export, and delete your data. Because your data is stored locally on your device, you have full control at all times:

  • Access: Your data is in your browser. Open FORGE → Settings → Export Data.
  • Deletion: Clear FORGE data in Settings, or clear your browser's localStorage for this site.
  • Portability: Export to CSV or JSON at any time from Settings.
  • Newsletter opt-out: Email us at support@forge-life.app to be removed from any list.

4. Data Retention

Your FORGE data persists in your browser until you clear it or clear your browser's site data. If you clear your browser or switch devices, your data will be lost. We recommend regular exports as backup. Cloud sync with end-to-end encryption is on our roadmap.

5. Cookies

FORGE does not use cookies for tracking. Vercel Analytics does not use cookies. Stripe may set cookies for fraud prevention when you initiate a payment, governed by Stripe's privacy policy.

6. Changes to This Policy

We will notify users of material changes to this policy via a banner in the app. The "Last updated" date at the top will always reflect the most recent revision.

7. Contact

Questions? Email us: support@forge-life.app

Terms of ServicePricingBack to FORGE