Data processing

Effective 2026-06-01 · ForgeOrbis

ForgeOrbis is deployed entirely inside your environment. We do not host, receive, or process your log data, so the usual processor relationship largely does not apply. This document states that precisely.

1. Roles

You are the controller of your log data at all times. Because ForgeOrbis runs on infrastructure you own and operate, ForgeOrbis does not act as a processor of that data in the ordinary course; the data never reaches our systems.

2. What we process

On our own systems we process only the business-contact information you provide to us (for example, a deployment request): name, work email, company, and message. That data is used solely to respond to you and is never combined with, or derived from, your log data.

3. Your log data

  • Stays inside your network for its entire lifecycle.
  • Is never transmitted to ForgeOrbis or any third party.
  • Is protected by the controls you configure: RBAC, retention, and the default-deny egress firewall shipped with the product.

4. Security measures

The product ships with zero-egress hardening, role-based access, hash-chained audit logging, and a downloadable attestation pack. See Security for the full model.

5. Sub-processors

No sub-processor touches your log data, because no third party ever receives it. Corporate sub-processors used to operate our website and respond to inquiries are listed under Sub-processors.

6. Contact

Data protection enquiries: privacy@forgeorbis.example.