ForgeScroll
Sign In

Privacy Policy

Last updated: April 2026

Introduction

At ForgeScroll, we take your privacy seriously. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website and use our services.

By using ForgeScroll, you agree to the collection and use of information in accordance with this policy.

Information We Collect

Personal Information

  • • Email address and username when you create an account
  • • Profile information you choose to provide (display name, bio, avatar)
  • • Content you create (novels, chapters, reviews, comments)

Usage Information

  • • Reading history and preferences
  • • Search queries and browsing behavior
  • • Device information and IP address
  • • Cookies and similar tracking technologies
How We Use Your Information
  • Provide Services: Enable you to read, write, and interact with content
  • Personalization: Recommend novels and customize your experience
  • Communication: Send important updates and respond to your inquiries
  • Security: Protect against fraud, abuse, and security threats
  • Analytics: Understand how our service is used to improve functionality
  • Legal Compliance: Comply with applicable laws and regulations
Information Sharing

We do not sell, trade, or otherwise transfer your personal information to third parties except in the following circumstances:

  • With Your Consent: When you explicitly agree to share information
  • Service Providers: Trusted partners who help us operate our service
  • Legal Requirements: When required by law or to protect our rights
  • Business Transfers: In connection with mergers or acquisitions
  • Public Content: Content you choose to make public (novels, reviews, profiles)
Data Security

We implement appropriate technical and organizational security measures to protect your personal information:

  • • Encryption of data in transit and at rest
  • • Regular security assessments and updates
  • • Access controls and authentication measures
  • • Secure hosting infrastructure
  • • Regular backups and disaster recovery procedures
Your Rights and Choices
  • Access: Request access to your personal information
  • Correction: Update or correct inaccurate information
  • Deletion: Request deletion of your personal information
  • Portability: Request a copy of your data in a portable format
  • Opt-out: Unsubscribe from marketing communications
  • Account Deletion: Delete your account and associated data
Legal Basis for Data Processing (GDPR)

Under GDPR, we process your personal data based on the following legal bases:

  • Contract: Processing necessary to provide ForgeScroll services (account creation, reading, publishing)
  • Consent: For marketing communications, analytics, and non-essential cookies (you can withdraw at any time)
  • Legitimate Interests: Fraud prevention, security, improving platform functionality, and community moderation
  • Legal Obligation: Compliance with applicable laws, regulations, and court orders
Data Retention

We retain your personal data only for as long as necessary to provide our services and fulfill the purposes outlined in this policy:

  • Account Data: Retained while your account is active and for 12 months after account deletion (for backup and legal purposes)
  • Reading History: Retained while your account is active; deleted upon account deletion
  • Published Content: Retained as long as the content remains on the platform
  • Payment Records: Retained for 7 years (as required by tax and financial regulations)
  • Support Communications: Retained for 2 years after the last interaction
GDPR Rights & Data Subject Requests

If you are a resident of the European Union or UK, you have the following rights under GDPR:

  • Right of Access: You can request a copy of all personal data we hold about you
  • Right to Rectification: You can request that we correct inaccurate or incomplete data
  • Right to Erasure: You can request deletion of your data, subject to certain exceptions (the "Right to be Forgotten")
  • Right to Restrict Processing: You can ask us to limit how we use your data
  • Right to Data Portability: You can request your data in a machine-readable format for transfer to another service
  • Right to Object: You can object to processing based on legitimate interests or direct marketing
  • Rights Related to Automated Decision Making: You have the right not to be subject to decisions based solely on automated processing
  • Right to Withdraw Consent: Where we rely on consent, you can withdraw it at any time

To exercise any of these rights, please contact us at privacy@forgescroll.com with your request. We will respond within 30 days.

Data Breach Notification

In the event of a data breach affecting your personal data, we are committed to notifying affected individuals and relevant supervisory authorities within 72 hours of becoming aware of the breach, as required by GDPR. We will provide information about the breach, its potential impact, and the measures we are taking to address it.

International Data Transfers

ForgeScroll is hosted in the United States. When you use ForgeScroll, your personal data may be transferred to, stored in, and processed in countries outside the European Union or UK. These countries may not have the same data protection laws as the EU. When we transfer data outside the EU, we implement appropriate safeguards such as Standard Contractual Clauses (SCCs) to ensure your data receives adequate protection. By using ForgeScroll, you consent to this transfer of your data outside the EU.

Automated Decision Making and Profiling

We do not use your personal data for automated decision-making that has legal or similarly significant effects on you (such as determining eligibility for services). We may use profiling for recommendation purposes (e.g., suggesting novels based on your reading history), but these do not have automatic legal consequences. You have the right to request human review of any automated decisions that affect you.

Right to Lodge a Complaint

If you believe we have violated your privacy rights or GDPR, you have the right to lodge a complaint with your local data protection authority. The relevant supervisory authority depends on your country of residence. You can find your country's data protection authority through the European Data Protection Board (EDPB).

Cookies and Tracking

We use cookies and similar technologies to enhance your experience:

  • Essential Cookies: Required for basic site functionality
  • Preference Cookies: Remember your settings and preferences
  • Analytics Cookies: Help us understand site usage
  • Marketing Cookies: Deliver relevant advertisements

You can control cookie preferences through your browser settings.

Contact Us

If you have questions about this Privacy Policy or our data practices, please contact us:

Policy Updates

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last updated" date. We encourage you to review this Privacy Policy periodically for any changes.

Related Policies
Terms of ServiceRefund & Payment PolicyContent Guidelines