Privacy Policy

Last updated: 1st January 2026

Introduction

dataforge AG ("we", "our", or "us") is committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website dataforge.world or use our construction safety compliance services.

As a company registered in Germany (Registration Number: HRB739152), we comply with the General Data Protection Regulation (GDPR) and other applicable data protection laws.

Data Controller Information

The data controller for your personal information is:

dataforge AG
Goethestraße 140
20403 Hamburg, Germany
Registration Number: HRB739152
VAT Number: DE732819267
Email: privacy@dataforge.world
Phone: +49 408098457

Data Collection

We collect various types of information to provide and improve our construction safety compliance services. The data we collect includes:

Personal Information

  • Name, email address, and phone number when you contact us
  • Company information and job title for business communications
  • Communication preferences and enquiry details
  • Any information you provide in forms, emails, or phone calls

Technical Information

  • IP address, browser type, and operating system
  • Website usage data and page views
  • Device information and screen resolution
  • Referral sources and exit pages

How We Use Your Information

We use the personal data we collect for various purposes related to our construction safety compliance services. How we use your information includes:

  • Responding to your enquiries and providing customer support
  • Delivering our construction safety compliance services
  • Communicating about service updates and industry developments
  • Improving our website and service offerings
  • Complying with legal obligations and regulatory requirements
  • Protecting our business interests and preventing fraud

Cookies and Tracking Technologies

We may use cookies and tracking technologies for analytics, advertising, and remarketing purposes, including Google Ads. These technologies help us measure campaign effectiveness, deliver relevant advertisements, and improve our services. You can manage your cookie preferences at any time through our cookie consent banner.

For detailed information about our use of cookies, please refer to our Cookie Policy.

Legal Basis for Processing

Under GDPR, we process your personal data based on the following legal bases:

  • Consent: When you provide explicit consent for marketing communications or cookies
  • Contract: When processing is necessary to perform our services
  • Legitimate Interest: For business operations, fraud prevention, and website improvement
  • Legal Obligation: When required by law or regulatory authorities

Data Sharing and Disclosure

We do not sell your personal information. We may share your data in the following circumstances:

  • With service providers who assist in our business operations
  • When required by law or legal process
  • To protect our rights, property, or safety
  • In connection with business transfers or restructuring
  • With your explicit consent

Data Retention

We retain personal data only as long as necessary for the purposes outlined in this policy or as required by law. Our data retention periods include:

  • Contact enquiries: 3 years from last contact
  • Service-related data: Duration of service plus 7 years for legal compliance
  • Website analytics: 26 months (Google Analytics default)
  • Marketing data: Until consent is withdrawn

Your Rights

Under GDPR and other applicable laws, you have the following rights regarding your personal data:

  • Right to Access: Request copies of your personal data
  • Right to Rectification: Request correction of inaccurate data
  • Right to Erasure: Request deletion of your data
  • Right to Restrict Processing: Limit how we use your data
  • Right to Data Portability: Receive your data in a portable format
  • Right to Object: Object to processing based on legitimate interests
  • Right to Withdraw Consent: Withdraw consent for processing

To exercise these rights, please contact us at privacy@dataforge.world.

Data Security

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. Our security measures include:

  • Encryption of data in transit and at rest
  • Regular security assessments and updates
  • Access controls and authentication procedures
  • Employee training on data protection
  • Incident response procedures

International Data Transfers

Your personal data may be transferred to and processed in countries outside the European Economic Area (EEA). When we transfer data internationally, we ensure appropriate safeguards are in place, such as:

  • Adequacy decisions by the European Commission
  • Standard contractual clauses
  • Binding corporate rules
  • Certification schemes

Children's Privacy

Our services are not directed to children under 16 years of age. We do not knowingly collect personal information from children under 16. If we become aware that we have collected personal data from a child under 16, we will take steps to delete such information promptly.

Changes to This Policy

We may update this Privacy Policy periodically to reflect changes in our practices or applicable laws. We will notify you of any material changes by posting the updated policy on our website and updating the "Last updated" date. We encourage you to review this policy regularly.

Contact Information

If you have questions about this Privacy Policy or wish to contact us regarding your personal data, please reach out to us:

Data Protection Officer
dataforge AG
Goethestraße 140
20403 Hamburg, Germany
Email: privacy@dataforge.world
Phone: +49 408098457

You also have the right to lodge a complaint with the relevant supervisory authority if you believe your data protection rights have been violated.