Privacy Policy

Effective Date: May 20, 2026

Introduction

ForgeQ ("we," "our," or "us") is dedicated to providing an excellent study experience while protecting your personal data. This Privacy Policy details the exact types of information we collect, how it is processed, and how your privacy rights are protected when you use the ForgeQ mobile application.

Information We Collect

1. Authentication and Profile Data

• What We Collect: Unique user identification codes (User IDs), email addresses, profile names, account creation timestamps, and subscription tier assignments.
• How We Collect It: Automatically gathered when you register or sign in through Supabase Auth, including OAuth identity details shared through Google Sign-In and Apple Sign-In integrations.

2. Subscription and Transaction History

• What We Collect: Anonymous purchase history data, subscription status logs, active expiration dates, entitlement tokens, and transaction identifiers.
• How We Collect It: Managed and tracked securely through our implementation of the RevenueCat billing infrastructure SDK. We do not directly see or store your credit card or bank details.

3. User-Generated Content and Uploaded Files

• What We Collect: Uploaded lectures, raw study documents, textbooks, user-made or AI-generated flashcard decks, customized notes, and progress metrics (such as FSRS space-repetition scheduling variables).
• How We Collect It: Uploaded willingly by you via our file_picker integration and processed securely inside your dedicated space within Supabase Storage Buckets and relational database tables. PDFs are parsed locally on-device or securely using text extraction tools (Syncfusion PDF).

4. Local Preferences and Notifications

• What We Collect: Customized notification intervals, daily study reminder times, and persistent local flags.
• How We Collect It: Stored locally on your physical device using the shared_preferences, flutter_local_notifications, and timezone synchronization packages.

5. Application Logs and Debug Data

• What We Collect: Error stack traces, crash statistics, app response lags, and system interaction events.
• How We Collect It: Automatically tracked to identify app crashes and maintain system stability.

How We Use Your Information

We process your personal information strictly to fulfill core app functions, including:

• Setting up your secure profile and authenticating logins.
• Processing premium subscription tier access via RevenueCat.
• Executing spaced-repetition algorithms and displaying study metrics.
• Sending push notifications and local study reminders.
• Ongoing optimization, error correction, and crash troubleshooting.

Data Sharing and Third-Party Sub-processors

We never sell, rent, or trade your personal information or study history to third parties or advertising data brokers. To run the Application, data is securely shared with the following infrastructure providers:

• Supabase: Houses our backend database, account auth records, and file storage under strict encryption.
• RevenueCat: Verifies in-app purchases and unlocks Pro features based on cryptographic device receipts.
• Google and Apple: Executed momentarily to safely confirm your identity when using social sign-in methods.
• AI Processing APIs: Text or file extractions may be sent securely to artificial intelligence sub-processors to generate your flashcards or lecture summaries. This data is processed securely and is never used to train public models.

Data Security

Your personal information, study histories, and cloud-stored files are encrypted both while traveling across the network (in-transit) and while sitting in databases (at-rest). Access to your content is restricted via Supabase Row-Level Security (RLS) tokens so that nobody except you can view your uploads.

Data Retention and Account Deletion

We preserve your personal data for as long as your account exists.

In strict compliance with mobile platform guidelines, you have the right to request full account and data deletion at any time. You can initiate this request inside the application settings panel or by emailing your deletion request directly to Modernc12@gmail.com. Upon confirmation, your authentication profile, transaction linkages, custom flashcards, and all uploaded source files will be permanently erased from our Supabase servers within 30 days.

Changes to This Policy

We may periodically update this Privacy Policy to reflect modifications to app dependencies or security requirements. Any updates will be accompanied by an adjusted "Effective Date" at the top of the text and will be visible within the app's info menus.

Contact Us

For privacy-related inquiries or to request manual data extraction/deletion, please email us at: Modernc12@gmail.com.