Data processing
Effective 2026-06-01 · ForgeOrbis
ForgeOrbis is deployed entirely inside your environment. We do not host, receive, or process your log data, so the usual processor relationship largely does not apply. This document states that precisely.
1. Roles
You are the controller of your log data at all times. Because ForgeOrbis runs on infrastructure you own and operate, ForgeOrbis does not act as a processor of that data in the ordinary course; the data never reaches our systems.
2. What we process
On our own systems we process only the business-contact information you provide to us (for example, a deployment request): name, work email, company, and message. That data is used solely to respond to you and is never combined with, or derived from, your log data.
3. Your log data
- Stays inside your network for its entire lifecycle.
- Is never transmitted to ForgeOrbis or any third party.
- Is protected by the controls you configure: RBAC, retention, and the default-deny egress firewall shipped with the product.
4. Security measures
The product ships with zero-egress hardening, role-based access, hash-chained audit logging, and a downloadable attestation pack. See Security for the full model.
5. Sub-processors
No sub-processor touches your log data, because no third party ever receives it. Corporate sub-processors used to operate our website and respond to inquiries are listed under Sub-processors.
6. Contact
Data protection enquiries: privacy@forgeorbis.example.