Privacy Policy — CertForge

1 Introduction

CertForge, operated by CertGovernance Inc., provides certificate governance services through certgovernance.app and related services ("Service").

This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Service.

2 Information We Collect

Personal Information

Name, email address, company name, and job title
Account credentials and authentication data
Billing and payment information (processed by Stripe)

Certificate & Usage Data

Certificate metadata, domains, and issuance records
Approval workflows, comments, and audit logs
Policy configurations and compliance data
System logs and usage analytics

3 How We Use Your Information

To provide, maintain, and improve the CertForge service
To process certificate requests and approval workflows
To generate audit trails and compliance reports
To communicate important service updates and security alerts
To detect and prevent fraud or abuse

4 Data Sharing and Disclosure

We do not sell your personal data. We may share information with:

Service providers (hosting, monitoring, payment processors)
Legal authorities when required by law
Successors in the event of a merger or acquisition

5 Data Retention

We retain certificate audit data for the duration of your subscription plus any legally required period (typically 1–7 years depending on compliance needs).

6 Your Rights

You have the right to access, correct, delete, or export your personal data. Contact us at privacy@certgovernance.app.

7 Security

We implement industry-standard security measures including encryption, access controls, and regular audits to protect your data. See our Security page for details.

Privacy Questions?

Contact our privacy team — we'll respond within 2 business days.

privacy@certgovernance.app