This is the Privacy Policy of Studio Forge.
The Studio Forge Privacy Policy explains how we collect, use, store, and protect personal data when you interact with our website or services. We are committed to maintaining transparency and following global data protection standards. This policy describes the types of information we collect, why we collect it, and how we ensure your data remains secure.
We respect your privacy and are fully committed to protecting the personal, professional, and business-related data that you share with us. This Privacy Policy explains, in a clear, transparent, and comprehensive manner, how we collect, receive, use, process, store, disclose, retain, and protect personal data when you visit our website, interact with our digital platforms, communicate with us, or engage with our services, regardless of your geographic
location.
This Privacy Policy also explains your rights in relation to your personal data and the measures we take to ensure that those rights are respected in accordance with applicable global data protection and privacy standards. We have structured this Privacy Policy to help you understand how your data is handled at every stage of your interaction with us.
By accessing or using our website or services, you acknowledge that you have read and understood this Privacy Policy.
Studio Forge acts as the data controller for personal data collected through our website and business activities. This means we decide why and how personal data is processed.
This Privacy Policy applies to anyone who interacts with Studio Forge. For example, it includes visitors to our website, individuals who submit inquiries, and organizations that engage with us for consulting or research services.
Additionally, this policy applies to clients, partners, prospective clients, and other professional stakeholders who communicate with us.
We follow internationally recognized data protection principles. These include lawfulness, fairness, transparency, purpose limitation, data minimization, accuracy, storage limitation, and security.
If you have questions about this Privacy Policy or our data practices, you can contact us using the information provided on our website. Our team will respond to privacy requests as quickly and responsibly as possible.
Depending on how you interact with us, we may collect and process different categories of personal data, including but not limited to the following:
Such as your full name, professional title, designation, role, department, or organizational affiliation.
Such as your email address, telephone number, business address, and other contact details provided by you.
Such as company name, industry, project requirements, research objectives, service scope, proposals, feedback, and information shared during meetings, workshops, or discussions.
Such as IP address, browser type and version, device identifiers, operating system, time zone settings, referral sources, and approximate geographic location derived from IP address.
Information about how you interact with our website, including pages visited, navigation paths, time spent on pages, click behavior, and engagement patterns.
Records of communications exchanged with us, including emails, messages, call summaries, meeting notes, and other correspondence.
We do not intentionally collect sensitive personal data. Where the processing of such data becomes necessary for a specific and legitimate purpose, it will be handled in accordance with applicable laws and subject to enhanced safeguards.
We collect personal data through a combination of direct interactions, automated technologies, and trusted third-party sources, including:
If you visit our login page, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.
These methods enable us to manage relationships effectively, understand user needs, and continuously improve our services and digital platforms.
We use personal data only for legitimate, defined, and lawful business purposes. These purposes include, but are not limited to:
We ensure that personal data is processed only to the extent necessary, in a proportionate manner, and in accordance with this Privacy Policy.
We do not sell, rent, trade, or otherwise commercially exploit personal data under any circumstances.
We may disclose personal data only in limited, controlled, and lawful situations, including:
All third parties with whom personal data is shared are required to process such data securely, confidentially, and strictly in accordance with our instructions and applicable laws.
Due to the global nature of digital infrastructure, cloud-based systems, professional collaboration, and service delivery models, personal data collected by us may be transferred to, accessed from, stored in, or processed in jurisdictions outside the country in which the data was originally collected. These jurisdictions may have data protection laws that differ from those applicable in your country of residence.
Where international transfers occur, we take reasonable and appropriate measures to ensure that personal data continues to receive an adequate and consistent level of protection. Such measures may include contractual safeguards, internal governance frameworks, data access restrictions, and organizational policies aligned with internationally recognized data protection principles.
International transfers are undertaken only where necessary to support legitimate business operations, technological functionality, or compliance requirements, and are conducted in a lawful, responsible, and proportionate manner.
We maintain a comprehensive and structured information security framework designed to protect personal data against unauthorized access, accidental or unlawful loss, destruction, misuse, alteration, or disclosure. Our security measures are risk-based and proportionate to the nature, sensitivity, and volume of personal data processed.
These measures may include secure infrastructure, access controls, authentication mechanisms, internal data handling policies, role-based permissions, and ongoing monitoring of systems and processes. Access to personal data is restricted strictly to authorized individuals who require such access to perform their professional responsibilities.
While we take reasonable and appropriate steps to safeguard personal data, no method of transmission over the internet or method of electronic storage can be guaranteed to be completely secure. Accordingly, we cannot guarantee absolute security but continuously work to strengthen and improve our safeguards.
We retain personal data only for as long as it is reasonably necessary to fulfill the purposes for which it was collected and processed. These purposes may include service delivery, relationship management, operational requirements, and compliance with legal, regulatory, accounting, or contractual obligations.
Retention periods are determined based on factors such as the nature and sensitivity of the data, the context in which it was collected, the duration of the relationship, and applicable legal requirements. We periodically review the personal data we hold to ensure that it remains relevant and necessary.
When personal data is no longer required, we take appropriate steps to securely delete, anonymize, or archive such data in accordance with our internal data retention and disposal practices.
Subject to applicable data protection and privacy laws, you may have certain rights in relation to your personal data. These rights are intended to give you greater control over how your personal data is used and protected.
Depending on your jurisdiction, these rights may include the right to:
Requests to exercise your rights may be submitted using the contact details provided on our website. We may need to verify your identity before fulfilling a request to ensure the security of personal data. We will respond to valid requests in accordance with applicable legal requirements and within reasonable timelines.
For the purposes of this Privacy Policy, the following terms shall have the meanings set out below:
Any information relating to an identified or identifiable natural person, either directly or indirectly, including identifiers such as name, contact details, professional information, or online identifiers.
Any operation or set of operations performed on personal data, whether automated or manual, including collection, recording, organization, structuring, storage, use, disclosure, transmission, restriction, or deletion.
The entity that determines the purposes and means of processing personal data
Any individual or entity that processes personal data on behalf of the data controller and in accordance with its instructions.
The transfer, storage, access, or processing of personal data in a jurisdiction outside the country in which the data was originally collected.
Small text files placed on your device that enable website functionality, support analytics, remember preferences, and improve user experience.
Information collected automatically when you interact with the website, such as pages viewed, navigation paths, and interaction metrics.
Information collected from devices or browsers, including IP address, browser type, operating system, and approximate location.
Any freely given, specific, informed, and unambiguous indication by which an individual agrees to the processing of personal data.
Any individual or organization other than us that may process personal data, including service providers, advisors, or authorities.
All laws, regulations, and legal requirements relating to the protection of personal data that apply to our processing activities.