Privacy Notice
Last updated: July 8, 2026
1. Who we are
TrainForge AI ("we", "us") is the data controller responsible for the personal data described in this notice. If you have questions, contact us at privacy@trainforge.ai.
2. Data we collect
- Account data: name, company name, email address, hashed password.
- Content: the text you submit and the SOPs, training guides, checklists, and quizzes generated for you.
- Usage & telemetry: generations used, feature usage, device and browser information, IP address, log data.
- Support communications: emails or messages you send us.
- Payment metadata: subscription status, plan, and billing-period dates. We do not store card numbers — payment data is handled by Paddle as Merchant of Record.
3. How we use your data
- To create and manage your account (legal basis: contract performance).
- To provide and improve the Service, including generating documents and surfacing usage limits (contract performance; legitimate interests).
- To prevent fraud, abuse, and security incidents (legitimate interests; legal obligation).
- To send service-related emails, including security and billing notifications (contract performance).
- To send product updates and marketing emails where you have opted in (consent — you can unsubscribe at any time).
- To comply with legal obligations such as tax and accounting (legal obligation).
4. AI processing
Text you submit is sent to AI model providers solely to generate the documents you request. We do not use Your Content to train models, and we contractually require our AI providers to apply the same restriction.
5. Who we share data with
- Infrastructure providers: hosting, database, and email infrastructure.
- AI providers: to generate the documents you request.
- Paddle as Merchant of Record for sale of subscriptions, billing, tax compliance, and invoicing.
- Analytics & support tooling: to understand product usage and respond to support requests.
- Professional advisers: legal, accounting, and audit.
- Authorities: where required by law.
6. International transfers
We and our subprocessors may process data outside your country. Where data leaves the UK or EEA, we rely on appropriate safeguards such as Standard Contractual Clauses or adequacy decisions.
7. Retention
We retain account data for as long as your account is active and for a reasonable period afterwards. You can delete your documents at any time from the dashboard. Account closure requests can be sent to privacy@trainforge.ai. Some data may be retained for legal, tax, or security reasons after deletion.
8. Your rights
Subject to applicable law, you have the right to access, rectify, erase, restrict processing of, port, and object to processing of your personal data, and to withdraw consent. EU/UK users may lodge a complaint with their supervisory authority. We aim to respond to requests within one month.
9. Security
We use appropriate technical and organisational measures including encryption in transit and at rest, access controls, audit logging, and isolation between customer workspaces.
10. Cookies
We use essential cookies for authentication and session management. We may use analytics cookies to understand product usage. You can manage cookies in your browser settings.
11. Changes
We will update this notice when our practices change. Material changes will be communicated by email or in-product notice.