Skip to content

Privacy Policy for PolicyForge

Effective Date: November 1, 2025

Our Commitment to Privacy

PolicyForge is built with privacy as a core principle. We believe your data should remain yours, which is why we've designed our application to process everything locally in your browser.

Building trust-focused operations? Explore MapEditor - Custom geography map design studio for workflow inspiration that respects user privacy.

What We Collect

Short answer: Minimal anonymous analytics only.

PolicyForge does not collect, store, or transmit any personal information to our servers. All document generation happens entirely in your web browser.

Anonymous Analytics (Ahrefs Web Analytics)

We use Ahrefs Web Analytics to understand basic website traffic patterns. This service:

  • Collects anonymous page view data (URLs visited, referrer information)
  • Does not collect personal information or track individuals
  • Does not use cookies
  • Is privacy-focused and GDPR compliant

For more details, see Ahrefs Privacy Policy.

How Your Data is Processed

Client-Side Only Processing

When you use PolicyForge to generate legal documents:

  1. All form data remains in your browser - The information you enter (company name, business type, etc.) never leaves your device
  2. Document generation happens locally - Templates are processed using JavaScript in your browser
  3. No server communication - We don't send your inputs or generated documents to any server

Local Storage (Your Browser)

PolicyForge uses your browser's storage technologies to enhance your experience:

  • IndexedDB: Used to save your generated documents locally for future reference (accessible via "My Documents")
  • localStorage: May store UI preferences

Important: All data stored this way remains on your device only. You can clear this data anytime using your browser's settings or by deleting documents through our interface.

No Cookies for Tracking

We do not use cookies for tracking, analytics, or advertising purposes.

Third-Party Services

None Required for Core Functionality

PolicyForge's core features (generating privacy policies, terms of service, etc.) work entirely offline and do not depend on any third-party services.

AI Features (Optional)

PolicyForge includes optional AI-powered features (e.g., "Explain this clause", "Suggest improvements", "Simplify language"):

  • These features are opt-in only and clearly labeled
  • You trigger them explicitly by clicking a button next to specific text
  • Only the specific text you select is sent for analysis
  • All AI requests go through the Vercel AI Gateway, which routes to OpenAI's GPT models
  • No personal information is included in AI requests
  • AI providers process requests according to their privacy policies

Important: AI features are completely optional. The core document generation works entirely offline without any AI. Learn more about Vercel AI Gateway's data protection practices.

Your Control Over Your Data

Since all data stays in your browser:

  • Access: You have complete access to all documents you've generated
  • Modification: You can edit or regenerate any document
  • Deletion: You can delete saved documents at any time through the "My Documents" page
  • Export: You can export documents as PDF, HTML, or Markdown and store them wherever you choose

Data Retention

We don't retain your data because we never receive it.

Documents you save are stored in your browser's IndexedDB:

  • Retained until you delete them
  • Cleared if you clear your browser's storage
  • Not synchronized across devices (unless your browser does this automatically)

Security

Since processing happens in your browser:

  • Your sensitive information isn't transmitted over the internet
  • No server-side database can be breached to expose your data
  • Standard web security practices apply (HTTPS, Content Security Policy, etc.)

Changes to This Policy

If we make changes to our data practices (such as adding AI features or analytics), we will update this policy and notify users through the website.

Children's Privacy

PolicyForge does not knowingly collect information from children under 13. Our service is intended for business owners, developers, and professionals.

International Users

Since all processing is client-side, no data crosses international borders through our service.

If you run location-rich experiences like our partner Eclipse Journey - Eclipse travel planning companion , be transparent about how itinerary and preference data is handled before, during, and after trips.

Technical Implementation Notes

For developers and technical users:

  • Privacy-Focused Analytics: We use Ahrefs Web Analytics (cookieless, anonymous). We don't use Google Analytics, Facebook Pixel, or similar tracking tools
  • No External API Calls for Core Features: Document generation makes no HTTP requests to our servers or third parties
  • Optional AI Features: When you use AI features, requests go through Vercel AI Gateway (not directly to OpenAI)
  • Client-Side Rendering: All page generation and document processing uses client-side JavaScript

Summary: PolicyForge is privacy-first by design. Your data never leaves your browser. We can't access, store, or share what we never receive.