Privacy + security

Privacy Policy

Last updated: April 22, 2026

Questions about privacy? Email dave@managerforge.com.

Introduction

ManagerForge ("we," "us," or "our") is a product of David Liloia, operated at managerforge.com. This Privacy Policy explains how we collect, use, store, and protect your information when you use the ManagerForge platform.

By creating an account or using ManagerForge, you agree to the practices described in this policy. If you do not agree, please do not use the service.

Our commitments

Before the details, here is what matters most:

  • We never train AI models on your data. Anthropic's API terms prohibit model training on API inputs.
  • We never sell your data to third parties.
  • We never share your data for advertising purposes.
  • Meeting notes and 1:1 content are private to each manager. Organization features focus on billing and team management, not surveillance.
  • You own your data and can export or delete it at any time.

Data we collect

Account information

  • Name and email address
  • Password (stored as a one-way hash, never in plain text)
  • Company name (optional)

Meeting and team data

  • Meeting notes and transcripts you create or record
  • Audio recordings of live meetings (temporary, see Retention section)
  • Action items and development events you log
  • Team member names, roles, and notes

AI-generated content

  • Insights and analysis generated from your meeting data
  • Coaching feedback and manager pattern reports
  • Performance review drafts

Usage and billing data

  • Subscription tier and audio minutes consumed
  • Feature usage patterns
  • Payment information (processed and stored by Stripe, never stored on our servers)

Analytics data

  • Anonymized page views and product usage via PostHog
  • No personally identifiable information is sent to analytics

How we use your data

We use your data exclusively to provide and improve the ManagerForge service:

  • Process meeting notes and generate AI-powered insights
  • Transcribe live audio recordings
  • Provide coaching analysis and performance review support
  • Send transactional emails (welcome messages, usage alerts, receipts)
  • Send optional marketing emails (newsletter, product updates) with one-click unsubscribe
  • Improve the product based on aggregated, anonymized usage patterns

Third-party service providers

We share data with the following service providers solely to operate the platform. None of these providers resell your data or use it for their own purposes.

ProviderPurposeData shared
Anthropic (Claude)AI processingMeeting notes and team member context
DeepgramLive transcriptionAudio streams during recording
ResendEmail deliveryEmail addresses and message content
StripePayment processingPayment and billing information
PostHogProduct analyticsAnonymized usage events
DigitalOceanDatabase and file storageAll application data (encrypted at rest)
VercelApplication hostingApplication requests and logs

Data retention

  • Account data: Retained until you delete your account.
  • Meeting notes and transcripts: Retained until you delete your account.
  • Audio recordings: Automatically deleted after 30 days via automated cleanup.
  • AI-generated content: Retained until you delete your account.
  • Payment records: Retained as required by tax and financial regulations.

Your rights

You have full control over your data:

  • Access: View all your data within the app at any time.
  • Export: Download all your data as JSON from Settings > Account.
  • Delete: Permanently delete your account and all associated data from Settings > Account. Deletion cascades to all meetings, notes, team members, and AI-generated content.
  • Correct: Edit your profile information and meeting notes at any time.
  • Unsubscribe: One-click unsubscribe from marketing emails. Transactional emails (receipts, security alerts) cannot be opted out of.

Data security

We take reasonable measures to protect your data:

  • All data is encrypted in transit using TLS/HTTPS.
  • Passwords are hashed using bcrypt and never stored in plain text.
  • Database connections use SSL encryption.
  • API keys and secrets are stored as encrypted environment variables, never in source code.
  • Session tokens expire automatically.

No system is 100% secure. If we discover a data breach that affects your account, we will notify you by email within 72 hours.

Cookies

ManagerForge uses the following cookies:

  • Session cookies: Required for authentication. These expire when you sign out or after your session ends.
  • Analytics cookies: PostHog uses anonymized cookies for product analytics. No personally identifiable information is collected.

We do not use advertising cookies or share cookie data with advertisers.

Children's privacy

ManagerForge is designed for use by adults in a professional context. We do not knowingly collect data from individuals under the age of 16. If you believe a child has provided us with personal data, please contact us and we will delete it promptly.

International data transfers

ManagerForge is hosted in the United States. If you access the service from outside the United States, your data will be transferred to and processed in the United States. By using ManagerForge, you consent to this transfer.

Changes to this policy

We may update this Privacy Policy from time to time. If we make material changes, we will notify you by email or by posting a notice on the platform. Your continued use of ManagerForge after changes take effect constitutes acceptance of the updated policy.

California privacy rights

If you are a California resident, you have the right to:

  • Know what personal information we collect about you
  • Request deletion of your personal information
  • Opt out of the sale of your personal information

We do not sell personal information. To exercise your rights, email dave@managerforge.com.

Contact us

If you have questions about this Privacy Policy or how we handle your data, contact us at dave@managerforge.com or via our contact page.