Privacy Policy

1. Who we are

SoftForge Digital is a software and digital solutions company operating through two registered legal entities: SoftForge Digital LTD (United Kingdom) and SoftForge Digital SARL (Morocco). For the purposes of data protection law, the relevant entity is the one that has a contractual relationship with you or operates the application or service you are using.

2. Information we collect

We collect information in three ways: information you provide directly, information collected automatically when you use our services, and information from third parties acting on your behalf.

• Contact information you submit (name, company, email address, phone number, project type, and message content) when you fill out our contact form or correspond with us.
• Account information when you register for one of our applications (email, display name, authentication identifiers, and any optional profile data).
• Usage data such as device type, operating system, application version, IP address, approximate location derived from IP, screen interactions, error logs, and crash reports.
• Cookies and similar technologies on our website (see our Cookie Policy).
• Payment-related information when transacting through one of our fintech products — handled by certified payment processors and never stored in plaintext on our systems.

3. How we use your information

• Provide and operate our applications, platforms, and services
• Respond to inquiries and provide customer support
• Send transactional and account-related communications
• Diagnose technical issues and improve reliability and performance
• Detect, prevent, and respond to fraud, abuse, and security incidents
• Comply with legal, regulatory, and contractual obligations

4. Legal bases (UK / EU / Morocco)

Where applicable law (including the UK GDPR, EU GDPR, and Moroccan Law 09-08) requires a legal basis, we rely on: (a) performance of a contract; (b) compliance with a legal obligation; (c) our legitimate interests in operating, securing, and improving our services; and (d) your consent where required, which you may withdraw at any time.

5. Sharing and disclosure

We do not sell your personal information. We share information only with the following categories of recipients, and only as necessary:

• Service providers and processors (cloud hosting, email delivery, analytics, error monitoring, payment processing) acting under contract and on our instructions.
• Affiliated entities within the SoftForge Digital group, where the same operational and security standards apply.
• Authorities, regulators, or other parties when required by law, court order, or to protect rights, property, or safety.
• Acquirers or successors as part of a merger, acquisition, or asset sale, subject to equivalent privacy commitments.

6. International transfers

Because we operate across the UK, the EU, Morocco, and serve clients globally, your information may be transferred to and processed in countries other than where you are located. Where required, we put in place appropriate safeguards such as Standard Contractual Clauses and equivalent mechanisms.

7. Data retention

We retain personal information only as long as needed for the purposes described in this Policy, to comply with our legal obligations, to resolve disputes, and to enforce our agreements. Retention periods vary by data category — for example, contact-form messages are retained for up to 24 months, and account data is retained while the account is active and for a limited period afterwards.

8. Your rights

Subject to applicable law, you may have the right to access, correct, update, delete, restrict, or object to processing of your personal information; to portability of your data; and to withdraw consent. To exercise these rights, contact us at contact@softforge.digital. You may also have the right to lodge a complaint with your local data protection authority.

9. Account deletion

If you have an account in one of our applications, you can request deletion of your account and associated personal data at any time. See our Account Deletion page for instructions.

10. Security

We use industry-standard administrative, technical, and physical safeguards to protect personal information, including encryption in transit, access controls, and regular review of our security practices. No system is perfectly secure; we encourage you to use strong, unique credentials.

11. Children's privacy

Our services are not directed to children under 13 (or the equivalent minimum age in your jurisdiction). We do not knowingly collect personal information from children. If you believe a child has provided us with personal information, please contact us so that we can delete it.

12. Third-party links and services

Our website and applications may link to third-party services. We are not responsible for the privacy practices of those third parties. Please review their policies before providing them with personal information.

13. Changes to this Policy

We may update this Privacy Policy from time to time. The 'Last updated' date at the top reflects the latest revision. Material changes will be communicated through reasonable means.