Privacy Policy

BigForgeOne LLC (“FORCE”, “we”, “us”) provides a compliance automation platform for the defense industrial base. This Privacy Policy explains what information we collect on this marketing site and in the FORCE product, how we use it, and the choices you have.

Information We Collect on bigforceone.com

On this marketing site we collect only what you provide: contact form fields (name, email, company, role, tier interest, environment details, freeform notes). We collect privacy-first analytics (Plausible/Umami-class) that do not use third-party tracking cookies and do not fingerprint visitors. We do not run advertising pixels on this site.

Information We Collect in the FORCE Product

The product collects compliance evidence you authorize us to collect via read-only cross-tenant connections to your AWS, Azure, and Microsoft 365 environments. Evidence is stored per-tenant in AWS GovCloud with encryption at rest and in transit. We never read evidence outside the tenant it belongs to. Complete product privacy commitments are in our DPA.

How We Use Information

We use marketing-site contact info to reply to your inquiry, to invite you to scheduled demos, and to notify you of Charter Program status. We use product evidence exclusively to serve your compliance posture back to you, to your C3PAO assessor under the scoped portal session you authorize, and (if you consent) to your Prime under the consent-level you've set.

Disclosure

We do not sell personal information. We do not disclose contact form submissions to third parties. Product subprocessors are listed at /legal/subprocessors and bound by a DPA substantially similar to our customer DPA.

Your Rights

To access, correct, or delete personal data we hold about you, email privacy@bigforgeone.com. Customers may additionally exercise product-level data-subject rights through their tenant administrator.

Contact

BigForgeOne LLC · Attn: Privacy · privacy@bigforgeone.com