Privacy Policy

01 Information We Collect

Depending on how you use StateForge, we may collect:

Account Information

• Name
• Email address
• Phone number
• Company or brokerage information
• User role (Agent, Broker, Mortgage Loan Officer, Title Company, Transaction Coordinator, Client, etc.)

Transaction Governance Information

StateForge records governance and coordination data related to real estate transactions, including:

• Property addresses
• Transaction milestone states and event logs
• Document metadata and category-level status (not document content)
• Participant roles and invitation records
• Task assignments and action queue states
• Audit trail entries including who acted, when, and from what source
• Communications and shared thread entries related to a transaction

StateForge does not store the content of documents processed through the platform. Document parsing extracts structured data points (such as appraised value or loan amount) and records them as governance events. The underlying documents are stored by the appropriate systems of record and distributed to authorized participants via time-limited secure links. StateForge is not the system of record for any transaction document.

Integration Data

When authorized by a user, StateForge may exchange limited information with third-party platforms, including but not limited to:

• DotLoop
• DocuSign
• Lone Wolf / AuthentiSign
• Email providers
• Calendar providers
• Customer relationship management (CRM) systems
• Loan Origination Systems (LOS)
• Title and settlement software
• Other authorized integrations

Connected accounts are accessed only after the user grants authorization through the applicable provider’s authentication process. Users may revoke access at any time through StateForge or the connected provider where supported. Only the information necessary to perform the requested integration is accessed. StateForge acts as a receiver of governance-relevant facts from these systems — it does not duplicate or replicate the full data sets maintained by those platforms.

Additional third-party integrations may be added over time. StateForge will update this Privacy Policy as necessary to reflect material changes in how user information is processed.

Technical Information

We may automatically collect:

• IP address
• Browser type
• Device information
• Operating system
• Usage analytics
• Log files
• Security events

02 How We Use Information

We use collected information to:

• Operate the StateForge platform
• Coordinate real estate transaction workflows
• Provide collaboration tools
• Authenticate users
• Improve system performance
• Detect fraud or unauthorized activity
• Respond to support requests
• Develop new platform features
• Maintain audit logs where applicable

03 Data Retention

StateForge retains transaction governance records — including audit trail entries, milestone states, participant actions, and event logs — for the duration of an active transaction and for a reasonable period thereafter consistent with applicable real estate recordkeeping requirements.

StateForge is designed as an orchestration and governance layer, not a document repository. Source documents, financial records, and official transaction records are maintained by the appropriate systems of record (lenders, title companies, MLS organizations, and government agencies). StateForge does not duplicate or warehouse those records.

Users may request deletion of their account information. Governance audit records tied to completed transactions may be retained where required by applicable law or where necessary to maintain the integrity of the transaction record.

04 Data Security

StateForge takes commercially reasonable measures to protect user information using administrative, technical, and physical safeguards.

Access to platform features and transaction data is governed by role-based permissions. Users receive only the access necessary to perform their role within a transaction.

While no internet transmission or storage method is completely secure, we continually work to protect information from unauthorized access, disclosure, alteration, or destruction.

05 Security Incident Notification

In the event of a security incident that compromises the confidentiality, integrity, or availability of user information, StateForge will:

• Investigate and take reasonable steps to contain the incident promptly
• Notify affected users without unreasonable delay and, where required, within the timeframe specified by applicable law
• Provide affected users with information about the nature of the incident, the data involved, and steps they can take to protect themselves
• Notify applicable regulatory authorities where required by law

Notification will be delivered via the email address associated with the user’s account or, where email is not available, through a prominent notice on the StateForge platform.

06 Third-Party Services

StateForge integrates with third-party service providers selected by our users. These providers maintain their own privacy policies and terms of service. StateForge is not responsible for the privacy practices of third-party platforms.

Users authorize StateForge to exchange information with connected services only to the extent necessary to provide requested functionality. StateForge receives governance-relevant facts from connected platforms — it does not become middleware that routes full workflows or duplicates features those platforms already own.

07 Data Ownership

Users retain ownership of the information they submit to StateForge. StateForge acts as a platform that facilitates workflow coordination and collaboration among authorized transaction participants.

08 Confidentiality and Role-Based Access

StateForge is designed with role-based permissions intended to limit information access to authorized participants within a transaction. Not every participant has access to the same information. Visibility is determined by system permissions, participant role, and transaction context.

StateForge follows the principle of least privilege: users receive only the permissions necessary to perform their role within a transaction. This principle is enforced at the system level and is a core element of StateForge’s governance architecture.

09 Artificial Intelligence Features

Certain StateForge features utilize artificial intelligence to assist with:

• Document classification
• Workflow recommendations
• Email parsing and signal extraction
• Summarization
• Task identification
• Communication assistance

AI-generated content and classifications are intended to assist users and should not be considered legal, financial, lending, or professional advice. StateForge requires human confirmation before any AI-identified signal advances a governed transaction state. Users remain responsible for reviewing and approving all decisions and documents.

10 Cookies and Analytics

StateForge may use cookies and similar technologies to maintain user sessions, improve platform performance, understand usage patterns, and enhance user experience. Users may adjust browser settings to limit cookies, although some functionality may be affected.

11 Children’s Privacy

StateForge is intended for business and professional use and is not directed toward children under the age of 13.

12 Changes to This Policy

We may update this Privacy Policy from time to time. When material changes are made, we will update the Effective Date above and, where appropriate, notify users through the platform.

13 Compliance

StateForge is committed to continually improving its privacy and security practices and intends to comply with applicable privacy and data protection laws governing the jurisdictions in which it operates, including but not limited to the laws of New Hampshire and Maine.

14 Contact Information

Questions regarding this Privacy Policy may be directed to: