Privacy Policy
Last updated: 2026-06-16
ForgeHQ ("we", "us") respects your privacy. This policy explains what we collect and why. ForgeHQ is operated by Nirav Gondaliya from India.
What we collect
Email signups
If you subscribe to the newsletter, we store your email address, the page or context you signed up from ("source"), a hashed IP address (to prevent abuse), and your user-agent string. We send a confirmation email; we do not add you to any list without explicit confirmation (double opt-in).
Cookies & analytics
With your consent (cookie banner) we use:
- Google Analytics 4 — anonymized page-view and event analytics.
anonymize_ipis enabled and consent defaults to "denied" until you accept. - Microsoft Clarity — heatmaps and aggregated session recordings to improve usability. No keystrokes captured in form fields.
- Vercel Web Analytics + Speed Insights — cookieless, no personal data. Used regardless of consent because it sets no identifying cookies.
You can decline analytics cookies and continue reading every guide for free.
How we use your data
- To send you newsletters you explicitly opted into.
- To prevent spam/abuse of the signup form (rate limiting by hashed IP).
- To understand, in aggregate, what content helps readers most.
We do not sell your data, share it with advertisers, or use it for retargeting.
Email delivery
We use Resend as our email-sending provider. Your email address is transmitted to Resend solely so they can deliver our newsletter. See Resend's privacy policy.
Storage and security
Subscriber data is stored in a managed Postgres database (Neon) hosted in the closest available region. We do not store passwords for readers (there is no reader login).
Your rights (DPDP Act 2023 & GDPR)
Under India's Digital Personal Data Protection Act 2023 and the EU GDPR, you have the right to:
- Access the personal data we hold about you.
- Correct or update inaccurate data.
- Withdraw consent (one-click unsubscribe in every email).
- Request deletion of your data.
- Request a copy of your data.
- Lodge a complaint with the Data Protection Board of India or your local DPA.
To exercise any of these, reply to any ForgeHQ email or write to Nirav on LinkedIn. We respond within 30 days.
Children
ForgeHQ is intended for adults seeking remote employment. We do not knowingly collect data from anyone under 18.
Changes
We will update this page if our practices change and bump the "last updated" date at the top.