Legal
Last updated: 3 July 2026
This Privacy Policy describes how DataForgeAI Inc. ("DataForgeAI," "we," "us," or "our") collects, uses, discloses, retains, and protects personal information in connection with our website at dataforgeai.life, our AI data forging platform services, feature engineering programmes, and related business operations. We are committed to handling personal information responsibly and in accordance with Canada's Personal Information Protection and Electronic Documents Act (PIPEDA), applicable Alberta privacy legislation, and other Canadian laws that may apply to our activities.
DataForgeAI Inc. is responsible for personal information under our control. We have designated a privacy contact accountable for our compliance with this Policy and applicable privacy principles. You may reach our privacy office at [email protected] or by mail at 707 8th Avenue SW, Suite 2300, Calgary, AB T2P 1H2, Canada. Our Business Number (BN) is 853174928AB0001.
We implement policies and practices to give effect to the principles set out in PIPEDA Schedule 1, including limiting collection, identifying purposes, obtaining consent where required, safeguarding information, and providing individuals with access to their personal information. We review this Policy periodically and update it when our practices or legal obligations change.
We collect personal information only for purposes that a reasonable person would consider appropriate in the circumstances. The primary purposes for which we collect personal information include:
We will identify the purpose of collection at or before the time personal information is collected, unless otherwise permitted by law. If we intend to use personal information for a new purpose not identified at the time of collection, we will obtain your consent before doing so, except where the law authorises or requires otherwise.
Knowledge and consent are required for the collection, use, or disclosure of personal information, except where inappropriate or permitted by law. Consent may be express or implied, depending on the sensitivity of the information and the reasonable expectations of the individual in the circumstances.
When you submit our contact form, you must actively check a consent box confirming that you agree to our collection and use of your personal information to respond to your inquiry in accordance with this Policy and PIPEDA. We do not pre-check consent boxes. You may withdraw consent at any time, subject to legal or contractual restrictions and reasonable notice. Withdrawal of consent may limit our ability to provide certain services.
For client engagements involving personal information within client datasets processed through forge pipelines, the client organisation typically acts as the organisation accountable for that data. DataForgeAI acts as a service provider processing information on the client's instructions under applicable data processing terms. Clients are responsible for ensuring they have appropriate authority and consent to share personal information with us for pipeline work.
We limit the collection of personal information to that which is necessary for the purposes identified. Information we may collect through our website contact form includes your name, email address, subject selection, and message content. We do not collect payment card details through the public website contact form.
When you browse our website, we may automatically collect technical information such as IP address, browser type, operating system, referring URL, pages viewed, and timestamps through cookies and similar technologies as described in our Cookie Policy. We configure analytics to avoid collecting unnecessary identifiers where practicable.
During professional engagements, we may collect additional contact and organisational information, credentials for secure system access (managed through agreed secure channels), and business correspondence related to pipeline delivery. We instruct our personnel to minimise access to personal information contained in client datasets and to process only what is required for the contracted forge scope.
We do not use or disclose personal information for purposes other than those for which it was collected, except with consent or as required or authorised by law. We do not sell personal information to third parties.
We may disclose personal information to:
Personal information is retained only as long as necessary to fulfil the purposes for which it was collected, to meet legal and regulatory requirements, and to resolve disputes or enforce agreements. Contact form submissions are typically retained for twenty-four months unless a business relationship develops, in which case records are retained in accordance with our document retention schedule. Client engagement records are generally retained for seven years from the end of the engagement for tax and contractual purposes, unless a longer period is required by law.
We take reasonable steps to ensure that personal information is as accurate, complete, and up-to-date as necessary for the purposes for which it is to be used. You may request correction of inaccurate personal information we hold about you by contacting [email protected]. We will amend records where appropriate and, where necessary, forward corrected information to third parties to whom information has been disclosed.
We protect personal information with security safeguards appropriate to the sensitivity of the information. Measures include access controls limiting personnel access to information on a need-to-know basis, encrypted transmission for website traffic (TLS), secure handling of credentials for client environments, and contractual security requirements for subprocessors.
No method of transmission or storage is completely secure. While we strive to protect personal information, we cannot guarantee absolute security. You are responsible for maintaining the confidentiality of any credentials issued to you and for notifying us promptly of suspected unauthorised access.
In the event of a breach of security safeguards involving personal information that poses a real risk of significant harm, we will notify affected individuals and the Office of the Privacy Commissioner of Canada as required by PIPEDA, and we will keep records of all breaches as mandated by law.
We make information about our privacy policies and practices readily available on this page. You may contact us with questions about how we handle personal information, our service provider relationships, or our data retention practices. We will respond to substantive inquiries within thirty days unless an extension is permitted by law, in which case we will notify you.
Upon written request, we will inform you of the existence, use, and disclosure of your personal information and provide access to that information, subject to limited exceptions permitted by law such as information protected by solicitor-client privilege or information about another individual. We will respond within thirty days of receiving a verifiable request.
To submit an access request, email [email protected] with sufficient detail to verify your identity and locate your records. We may request additional information to confirm identity before releasing records. If we deny access, we will provide reasons and inform you of available complaint mechanisms.
You may challenge our compliance with this Policy by contacting our privacy office. We will investigate complaints and respond with our findings and any corrective action taken. If you are not satisfied with our response, you may contact the Office of the Privacy Commissioner of Canada at www.priv.gc.ca or the Office of the Information and Privacy Commissioner of Alberta for matters within provincial jurisdiction.
Our services and website are directed at business and professional audiences. We do not knowingly collect personal information from individuals under the age of eighteen without appropriate parental or guardian consent. If you believe we have inadvertently collected information from a minor, please contact us and we will take steps to delete it.
We primarily process and store personal information in Canada. Where service providers process information outside Canada, we assess risks and implement contractual and technical measures to provide comparable protection. By using our website or services, you acknowledge that information may be processed in jurisdictions with different privacy laws, subject to the safeguards described in this Policy.
We may update this Privacy Policy from time to time. The "Last updated" date at the top of this page indicates when the Policy was most recently revised. Material changes will be posted on this page. We encourage you to review this Policy periodically. Continued use of our website after changes constitutes acceptance of the updated Policy to the extent permitted by law.
For privacy-related questions, access requests, or complaints:
DataForgeAI Inc. — Privacy Office
707 8th Avenue SW, Suite 2300
Calgary, AB T2P 1H2, Canada
Email: [email protected]
Phone: +1 (587) 555-9248