Forge
Sign inFree chat

Forge Studio — Privacy Policy

Last updated: 10 June 2026

1. Who we are

Forge Studio is operated by Jobmining AI Ltd ("we", "us", "our"). We are the "data controller" for your personal information — which means we are responsible for deciding how and why it is used.

  • Company registration number (CRN): 17160934
  • Registered office: 128 City Road, London, EC1V 2NX
  • Website: forgestudio.uk
  • Contact for privacy questions: hello@forgestudio.uk

This policy explains what personal information we collect, why, how we protect it, how long we keep it, and the rights you have. It applies to everyone who uses Forge Studio, wherever you are in the world.

2. The information we collect

  • Account information: your email address. We sign you in with a one-time code sent to your email, so we do not hold a password for you.
  • What you tell us in chats: your idea, your project details, and the messages you exchange with Forge Studio during the free chat, Planning, and Build.
  • Your AI provider key: if you add your own AI provider API key, we store it in encrypted form so your work can run.
  • Payment information: when you pay, our payment provider handles your card details directly — we do not see or store your full card number. We keep a limited billing record (such as what you bought, the amount, and the date).
  • Technical information: basic information your device and browser send automatically, such as general location, device and browser type, and activity logs that we use to keep the service secure and working.

3. Why we use your information, and our legal basis

We use your information to:

  • provide the service you asked for — creating your account, and running the free chat, Planning, and Build (legal basis: performing our contract with you);
  • take payment and keep proper financial records (legal basis: performing our contract, and meeting legal obligations such as tax and accounting law);
  • keep Forge Studio secure, prevent misuse, and fix problems (legal basis: our legitimate interests in running a safe, reliable service);
  • contact you about your account and service — such as your sign-in code, receipts, and important notices (legal basis: performing our contract);
  • comply with the law where we are required to (legal basis: legal obligation).

We do not sell your personal information, and we do not use it for advertising.

4. How the AI works with your information

To answer you, the content of your chats is sent to our AI provider, which processes it to generate a response and returns it to us. We do not allow your content to be used to train AI models unless you specifically choose to allow it.

5. The providers who help us run Forge Studio

We use a small number of trusted service providers ("processors") who handle data on our behalf and only under our instructions. The providers we currently use include:

  • a hosting and database provider that stores your data (currently Supabase, in the European Union);
  • a website hosting provider (currently Vercel);
  • a payment provider (currently Stripe);
  • an email provider for sign-in codes, receipts, and notices (currently Resend);
  • a network and security provider for our website (currently Cloudflare);
  • our AI provider (currently Anthropic).

This list may change as we improve the service, and we keep it up to date here. We do not share your information with anyone else, except where the law requires it or where it is needed to protect our legal rights.

6. Where your information is stored, and international transfers

Your core data is stored in the European Union (currently in Frankfurt, Germany). Because Forge Studio has users and providers around the world, some information may be transferred to — or accessed from — other countries, including some outside the UK and the EU. Whenever that happens, we make sure appropriate legal safeguards are in place (such as the UK's and EU's standard data protection clauses) so that your information stays protected to the same standard wherever it goes.

7. How we protect your information

We take security seriously. In plain terms:

  • information travels over encrypted connections;
  • sensitive details (such as your AI provider key) are individually encrypted before they are stored, so they would be unreadable even to someone who somehow reached the raw storage;
  • each customer's data is strictly separated from every other customer's;
  • we keep secret keys and access tightly controlled, and we do not put sensitive details into our activity logs.

No online service can be guaranteed completely secure, but we work hard to protect your information.

8. How long we keep your information

We keep information only for as long as we need it:

  • while your project is active, we keep it so we can serve you;
  • after a project is finished, we keep it for a short grace period and then delete it, unless you ask us to keep it on file;
  • if an account is left unused for a long time, we warn you and then delete it;
  • chat history and sensitive activity logs are wiped on a short cycle;
  • we keep the minimum financial records the law requires (for accounting and tax) for as long as required, even after the rest is deleted.

When we delete your data, we also remove the copies we hold and make any encrypted backups unreadable; those backups then age out over roughly two months.

9. Your rights

Depending on where you live, you have rights over your personal information. Under UK and EU data protection law, these include the right to:

  • ask for a copy of the information we hold about you;
  • have inaccurate information corrected;
  • have your information deleted ("the right to be forgotten");
  • get a copy of your data to take elsewhere;
  • ask us to restrict or stop certain uses; and
  • withdraw any consent you have given.

To use any of these, contact us at hello@forgestudio.uk. We will respond within the time the law allows (normally one month). If you are elsewhere in the world, you may have similar rights under your local law, and we will honour those that apply to you.

10. Deleting your data

You can ask us to delete your personal information at any time. When you do, we remove it across our systems — including derived copies such as search indexes and caches — and we destroy the personal key that unlocks your encrypted data, which makes it unreadable straight away. Any remaining backup copies then expire over roughly two months. We keep only the minimum billing records the law requires. You can also ask for a fresh copy of your data at any time.

11. Children

Forge Studio is for adults: you must be 18 or over to use it. We do not knowingly collect information from children. If you believe a child has provided us with their information, please contact us and we will remove it.

12. Cookies and similar technology

We use only the cookies and similar technology needed to sign you in and to keep the service working and secure. We do not use them for advertising or for tracking you across other websites.

13. Changes to this policy

We may update this policy from time to time. If we make an important change, we will take reasonable steps to let you know. The "last updated" date at the top always shows the current version.

14. How to contact us, and how to complain

For any privacy question or request, contact us at hello@forgestudio.uk.

If you are in the UK and you are unhappy with how we have handled your information, you have the right to complain to the Information Commissioner's Office (ICO) at ico.org.uk. If you are elsewhere, you can contact your local data protection authority.