Legal

Privacy Policy

Last updated: March 7, 2026

Contents

  1. Data Controller
  2. Data We Collect
  3. How We Use Your Data
  4. Legal Basis for Processing
  5. Cookies and Tracking
  6. Data Sharing and Third Parties
  7. International Data Transfers
  8. Data Retention
  9. Your Rights Under GDPR
  10. Children's Privacy
  11. Data Security
  12. Changes to This Policy
  13. Contact Us

1. Data Controller

For the purposes of the General Data Protection Regulation (GDPR) and applicable data protection laws, the data controller responsible for your personal data is:

Forsetti Framework
Email: support@ravenforgesoftware.com
Website: https://forsettiframework.com/

If you have any questions about how we process your personal data, you can contact us at the email address above.

2. Data We Collect

We collect and process the following categories of personal data:

2.1 Data You Provide Directly

  • Contact form submissions: Name, email address, and any information you include in your message.
  • Account and licensing information: Name, email address, organization name, and billing information when you purchase a license.
  • Newsletter subscriptions: Email address, if you subscribe to product updates or newsletters.
  • Comments and feedback: Name, email address, website URL, and the content of comments posted on the site.

2.2 Data Collected Automatically

  • Log data: IP address, browser type, operating system, referring URL, pages visited, date and time of access, and access status.
  • Cookies and similar technologies: Session identifiers, preferences, and analytics data as described in Section 5.

2.3 Data We Do Not Collect

We do not collect special categories of personal data (also known as sensitive data), including data related to racial or ethnic origin, political opinions, religious beliefs, trade union membership, genetic or biometric data, health, or sexual orientation.

3. How We Use Your Data

We process your personal data for the following purposes:

  • To provide and maintain our services: Delivering the Forsetti Framework, processing license purchases, providing access to documentation, and managing your account.
  • To respond to inquiries: Answering your questions and support requests submitted through the contact form or email.
  • To send product updates: Notifying you about new releases, security updates, and changes to the framework, only if you have opted in to receive such communications.
  • To improve our website: Analyzing aggregated and anonymized usage data to improve site performance, content, and user experience.
  • To comply with legal obligations: Meeting our legal, regulatory, and tax obligations, including maintaining records of transactions.
  • To protect our rights: Enforcing our terms of service and licensing agreements, and protecting against fraud or unauthorized use of our services.

We do not use your personal data for automated decision-making or profiling that produces legal effects or similarly significant effects concerning you.

5. Cookies and Tracking

Cookies are small text files stored on your device when you visit our website. We use the following categories of cookies:

5.1 Strictly Necessary Cookies

These cookies are essential for the website to function. They enable core features such as security, session management, and accessibility preferences. You cannot opt out of these cookies as the website cannot function properly without them.

Cookie Purpose Duration
wordpress_sec_* Authentication and session security Session
wordpress_logged_in_* Identifies logged-in users Session
wp_lang Language preference Session
cookie_consent Records your cookie preferences 1 year

5.2 Analytics Cookies (Optional)

These cookies help us understand how visitors use our website by collecting anonymized and aggregated data. They are only set if you give your consent.

Cookie Purpose Duration
_ga Google Analytics — Distinguishes unique visitors 2 years
_ga_* Google Analytics — Maintains session state 2 years

5.3 Managing Cookies

You can manage your cookie preferences at any time through your browser settings. Most browsers allow you to block or delete cookies. Please note that blocking strictly necessary cookies may affect website functionality.

We do not use any marketing, advertising, or social media tracking cookies.

6. Data Sharing and Third Parties

We do not sell, rent, or trade your personal data. We may share your data with the following categories of recipients only as necessary:

  • Hosting provider: Our website is hosted by a third-party provider who processes server log data on our behalf under a data processing agreement.
  • Payment processor: License payments are processed by a third-party payment provider. We do not store your full credit card details. The payment processor operates as an independent data controller for payment data.
  • Analytics provider: If you consent to analytics cookies, anonymized usage data may be processed by Google Analytics. IP anonymization is enabled.
  • Email service provider: If you subscribe to product updates, your email address is processed by our email delivery provider under a data processing agreement.
  • Legal requirements: We may disclose personal data when required by law, such as in response to a court order or a lawful request by a public authority.

All third-party processors are contractually obligated to process your data only on our instructions and in compliance with applicable data protection laws.

7. International Data Transfers

Some of the third-party services we use may process data outside the European Economic Area (EEA). When personal data is transferred outside the EEA, we ensure appropriate safeguards are in place, including:

  • Standard Contractual Clauses (SCCs) approved by the European Commission.
  • Adequacy decisions by the European Commission for the receiving country.
  • Certification under an approved framework such as the EU-U.S. Data Privacy Framework.

You may request a copy of the specific safeguards applied to transfers of your data by contacting us.

8. Data Retention

We retain your personal data only for as long as necessary to fulfil the purposes for which it was collected:

Data Category Retention Period Reason
Contact form messages 12 months Support follow-up
Licensing records Duration of license + 7 years Contractual and tax obligations
Newsletter subscriptions Until you unsubscribe Consent-based
Server logs 90 days Security and diagnostics
Analytics data 26 months Anonymized and aggregated
Comments Indefinitely or until deletion requested Community discussion

When data is no longer needed, it is securely deleted or anonymized so that it can no longer be associated with you.

9. Your Rights Under GDPR

Under the General Data Protection Regulation, you have the following rights regarding your personal data. You may exercise any of these rights by contacting us at the email address listed in Section 1.

Right of Access

You have the right to request a copy of the personal data we hold about you. We will provide this in a commonly used electronic format within one month of your request. (Article 15)

Right to Rectification

You have the right to request correction of inaccurate or incomplete personal data. We will rectify the data without undue delay. (Article 16)

Right to Erasure

You have the right to request deletion of your personal data when it is no longer necessary, you withdraw consent, or there is no overriding legitimate reason for continued processing. (Article 17)

Right to Restriction

You have the right to request that we restrict the processing of your data in certain circumstances, such as when you contest its accuracy or object to its processing. (Article 18)

Right to Data Portability

You have the right to receive your personal data in a structured, commonly used, machine-readable format, and to transmit it to another controller without hindrance. (Article 20)

Right to Object

You have the right to object to the processing of your data based on legitimate interests or for direct marketing purposes. We will cease processing unless we demonstrate compelling legitimate grounds. (Article 21)

Right to Withdraw Consent

Where we rely on consent as the legal basis for processing, you may withdraw your consent at any time. Withdrawal does not affect the lawfulness of processing carried out before the withdrawal. (Article 7(3))

Right to Lodge a Complaint

You have the right to lodge a complaint with a supervisory authority in the EU member state of your habitual residence, place of work, or the place of the alleged infringement. (Article 77)

We will respond to all rights requests within one month. In complex cases or when we receive a large number of requests, this period may be extended by two additional months, in which case we will inform you of the extension and the reason for the delay.

We will not charge a fee for responding to your request unless the request is manifestly unfounded or excessive, in which case we may charge a reasonable fee or refuse to act on the request.

10. Children's Privacy

Our services are not directed at individuals under the age of 16. We do not knowingly collect personal data from children. If you believe that we have inadvertently collected data from a child under 16, please contact us immediately and we will delete the data.

11. Data Security

We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction. These measures include:

  • TLS/HTTPS encryption for all data transmitted between your browser and our servers.
  • Encryption of sensitive data at rest.
  • Regular security updates and patches applied to server software.
  • Access controls limiting who can view or process personal data.
  • Regular backups with secure storage.

While we take all reasonable precautions, no method of transmission over the internet or method of electronic storage is 100% secure. We cannot guarantee absolute security of your data.

12. Changes to This Policy

We may update this privacy policy from time to time to reflect changes in our practices, services, or legal requirements. When we make material changes, we will:

  • Update the "Last updated" date at the top of this page.
  • Post a notice on our website for significant changes.
  • Notify you by email if the changes materially affect how we process your data and you have an active account or subscription.

We encourage you to review this policy periodically. Your continued use of our website and services after changes are posted constitutes your acknowledgment of the updated policy.

13. Contact Us

If you have questions about this privacy policy, wish to exercise any of your rights, or have concerns about how your data is being processed, please contact us:

Forsetti Framework
Email: support@ravenforgesoftware.com
Contact form: https://forsettiframework.com/contact/

We aim to resolve all privacy-related inquiries within 30 days.