Skip to content
Legal & Privacy

Privacy Policy

Learn how NUSTFORGE collects, uses, protects, retains, and manages information shared through website visits, project forms, email, WhatsApp, analytics, and client communication.

Last updated

May 31, 2026

What it covers

Collection, use, retention and privacy rights

Applies to

Visitors, inquiries and clients

Read our Terms of Service
On this page

Policy overview

This policy explains what information may be collected, why it is used, which providers may process it, how long it may be retained, and the privacy choices available to you.

1. Who we are and the scope of this policy

NUSTFORGE is an independent remote-first software engineering studio. For information collected directly through this website, project inquiry forms, email communication, WhatsApp discussions, and related business interactions, NUSTFORGE is responsible for deciding why and how that information is used.

This Privacy Policy explains how we handle personal information when you visit https://www.nustforge.com, contact us, submit a project inquiry, request an estimate, communicate with us, or engage with our services.

Questions or privacy requests can be sent to hello@nustforge.com.

2. Information we may collect

We may collect information you choose to provide, including your name, email address, phone or WhatsApp number, company name, website URL, project type, project description, requested features, preferred contact method, target timeline, budget information if voluntarily provided, files or materials you share, and any other information included in your messages.

If you become a client, we may also collect project, contractual, billing, transaction, technical, support, account, access, approval, and communication records that are reasonably required to provide and manage the agreed services.

We may collect basic technical and usage information such as IP address, approximate location derived from an IP address, browser type, device type, operating system, pages visited, referring page, interaction events, error information, and website performance data.

We ask you not to submit unnecessary sensitive personal information through ordinary website forms, email, WhatsApp, or project inquiries.

3. How information is collected

We collect information directly from you when you submit a form, send an email, contact us through WhatsApp, request a consultation, participate in a project discussion, provide files or credentials, approve work, make a payment, or otherwise communicate with us.

Technical and usage information may be collected automatically through website infrastructure, security logs, essential browser technologies, analytics tools where enabled, and similar technologies.

We may also receive information from a colleague, company representative, referral partner, contractor, or other person who contacts us on behalf of a business, where they are permitted to provide that information.

4. How we use information

We use information to respond to inquiries, understand business requirements, arrange discussions, review project feasibility, prepare scope recommendations, provide estimates, communicate about timelines, and take steps requested before entering into a project agreement.

We may use information to provide websites, applications, SaaS platforms, dashboards, portals, e-commerce systems, booking systems, AI tools, automation workflows, cloud integrations, technical consulting, maintenance, support, and other agreed software services.

We may also use information to administer client relationships, manage projects, process payments, maintain records, provide support, secure our website and systems, prevent misuse, investigate technical issues, improve website performance, and meet legal or contractual obligations.

We do not sell personal information to advertisers, data brokers, or unrelated third parties.

6. Project inquiries and client communication

When you contact us through the website form, email, WhatsApp, or another communication channel, we use the information you provide to understand your idea, business workflow, requested features, integrations, timeline, technical requirements, and support needs.

We may retain inquiry and communication records so we can maintain context, provide accurate follow-up information, prepare a scope or estimate, manage a potential or active client relationship, and respond to future questions.

Submitting an inquiry does not automatically create a client relationship or project contract. Project work begins only when the relevant scope, payment terms, responsibilities, and delivery arrangements are agreed.

7. Website forms and communication providers

Website inquiry submissions may be processed through EmailJS so that form information can be delivered to our designated business email address.

Email messages may be processed by our email provider. If you contact us through WhatsApp, your communication is also processed through WhatsApp and Meta services under their own terms and privacy practices.

Please avoid sending passwords, private keys, payment card information, government identification documents, medical records, or other highly sensitive material through an ordinary website form or unsecured message.

8. Cookies, analytics, and similar technologies

Our website may use essential technologies that support security, navigation, form operation, preference handling, fraud prevention, and basic website functionality.

Where enabled, we may use optional analytics technologies to understand page visits, traffic sources, interactions, website performance, and content effectiveness.

Where applicable law requires consent, optional analytics or other non-essential technologies will not be intentionally enabled until you make a choice through the available consent controls.

You may be able to change cookie preferences through website controls or your browser settings. Blocking essential or functional technologies may affect parts of the website.

9. Service providers and information sharing

We may share limited information with trusted providers that help us operate our website and business, including providers for hosting, deployment, infrastructure, databases, form delivery, email, communication, analytics, security, payments, project management, file storage, and technical support.

These providers receive only the information reasonably required to provide the relevant service and process it according to their own contractual, security, and privacy obligations.

Information may also be shared with professional advisers, subcontractors, or project collaborators where reasonably necessary for an agreed project and subject to appropriate confidentiality or contractual responsibilities.

We may disclose information where reasonably necessary to comply with law, respond to a valid legal process, prevent fraud or misuse, protect security, enforce an agreement, or establish, exercise, or defend legal rights.

We do not disclose personal information to unrelated parties for their independent advertising purposes.

10. International processing and transfers

NUSTFORGE works remotely and may use service providers, infrastructure, and communication platforms that operate in different countries. Information may therefore be processed outside the country where you live.

Privacy and data protection rules may differ between countries. Where applicable law requires additional safeguards for an international transfer, we take reasonable steps to use providers and arrangements that offer recognised contractual, organisational, technical, or legal protections.

You may contact us if you have questions about the international processing of information submitted directly to NUSTFORGE.

11. How we protect information

We use reasonable technical and organisational measures intended to protect information against unauthorised access, loss, misuse, alteration, disclosure, or destruction.

Measures may include access controls, authentication, encrypted connections, trusted service providers, software updates, restricted credential handling, backups where appropriate, and security-conscious development practices.

No website, online transmission, email service, messaging platform, cloud provider, or storage system can be guaranteed to be completely secure. You should use appropriate care when deciding what information to send electronically.

12. Data retention

General project inquiries and related communication may normally be retained for up to 24 months after the last meaningful interaction so we can maintain context, respond to follow-up questions, evaluate business opportunities, prevent misuse, and maintain appropriate business records.

If an inquiry becomes an active client engagement, relevant project, contract, payment, approval, support, technical, and communication records may be retained for the duration of the relationship and afterward where reasonably necessary for legal, accounting, tax, security, dispute-resolution, warranty, support, or contractual purposes.

Technical logs, analytics information, and information held by service providers may be retained according to operational requirements and the retention settings of the relevant systems.

We may retain information for longer where required by law, needed to resolve a dispute, or necessary to establish, exercise, or defend legal rights.

When information is no longer reasonably required, we may securely delete, anonymise, or archive it as appropriate.

13. Your privacy rights

Depending on your location and applicable law, you may have the right to request access to personal information, correction of inaccurate information, deletion, restriction of processing, objection to certain processing, or a portable copy of information you provided.

Where processing relies on consent, you may withdraw that consent at any time. Withdrawal does not affect processing that was lawful before consent was withdrawn.

Privacy requests may be sent to hello@nustforge.com. Please describe your request clearly. We may need to verify your identity before disclosing, correcting, deleting, or transferring information.

Some requests may be limited where information must be retained for legal obligations, contractual records, security, fraud prevention, dispute handling, or the legal rights of another person.

Depending on your location, you may also have the right to raise a concern with the relevant privacy, data protection, or supervisory authority.

14. Sensitive information

Our ordinary website and project inquiry process is not designed to collect highly sensitive personal information.

Please do not send health information, biometric information, private financial credentials, payment card details, government identification documents, criminal-record information, passwords, private keys, or other highly sensitive material unless it is genuinely required for an agreed project and an appropriate secure method has been arranged.

If unnecessary sensitive information is submitted, we may delete it where reasonably possible.

15. Children’s privacy

Our website and services are intended for businesses, founders, organisations, teams, and professional users. They are not directed to children.

We do not knowingly collect personal information from children through ordinary project inquiries. If you believe that a child has submitted personal information, please contact us so we can review and remove it where appropriate.

16. Third-party websites and services

Our website may link to third-party websites and services, including WhatsApp, GitHub, hosting platforms, client projects, payment services, social platforms, or other external resources.

Third-party websites and services operate under their own privacy policies, security practices, and terms. NUSTFORGE is not responsible for their independent content or privacy practices.

You should review the relevant third-party policies before providing information or creating an account with an external service.

17. Automated decision-making and AI

We do not use information submitted through ordinary website inquiries to make solely automated decisions that produce legal or similarly significant effects about you.

Some client projects may use AI or automation features, but the privacy, data handling, and decision-making requirements for those projects should be addressed in the relevant project scope, agreement, and technical design.

18. Changes to this policy

We may update this Privacy Policy to reflect changes in our website, services, service providers, tools, legal requirements, security practices, or business operations.

The updated date shown at the top of the Privacy Policy indicates when this version was last revised.

Material changes may also be communicated through the website or through another reasonable method where appropriate.

19. Contact us

If you have questions about this Privacy Policy, want to exercise a privacy right, or want information about how NUSTFORGE handles personal information, contact us at hello@nustforge.com.

You can also use the contact options available at https://www.nustforge.com.

Privacy questions

Need help with your information?

Contact NUSTFORGE to ask about information submitted through our website, project forms, email, WhatsApp, or business communication.