// Privacy

Privacy Policy

"Your data is processed, not owned."
Hyperion DataForge, Inc. · Version 1.0 · Effective April 5, 2026
Core Privacy Principle

We collect the minimum information necessary to operate the service. We do not store customer data, do not sell personal information, and do not use customer data beyond the operational necessity of completing the requested task.

Section 1

Overview

Hyperion DataForge, Inc. ("we," "our," or "us") is committed to protecting your privacy. Our platform is engineered on a zero-trust, streaming-based architecture designed to minimize data exposure and eliminate unnecessary data retention at every layer of the stack.

Our approach is governed by a single principle: we collect the minimum information necessary to operate the service. We do not store customer data, do not sell personal information, and do not use customer data beyond the operational necessity of completing the requested task.

Section 2

Information We Collect

We collect only what is strictly required to provide our services.

a. Contact Information

If you voluntarily provide it, we may collect:

  • Name
  • Email address
  • Other basic contact details submitted through support or onboarding

This information is used solely for service communication and support. It is never sold, shared for marketing purposes, or used for profiling.

b. Operational Logs

We collect limited technical logs necessary to operate and maintain the platform, including:

  • Job execution status
  • Error logs
  • System performance metrics

These logs do not include customer data payloads. They are used strictly for reliability monitoring, debugging, and system performance. They are retained only as long as operationally necessary and are not accessible outside of internal engineering contexts.

Section 3

Data Processing Model

Hyperion DataForge operates as a streaming data processing engine. Our architecture is designed so that customer data never comes to rest within our systems.

  • Data is processed in transit via streaming APIs
  • Each execution runs within an isolated, per-job containerized environment
  • Customer data is not stored, persisted, or retained by our platform before, during, or after processing
  • Containers are ephemeral — they are destroyed upon job completion
Zero-Trust Architecture

DataForge is built on a zero-trust model. No component of our platform assumes persistent access to customer data. Execution environments are isolated per job, access is controlled at every layer, and no data crosses job boundaries.

We do not maintain copies of your data. We do not build data lakes, warehouses, or archives from customer payloads. Processing is the full extent of our interaction with your data.

Section 4

Data Retention

We do not retain customer data.

  • Data processed through the platform is not stored after execution
  • No datasets, files, or database contents are retained following job completion
  • Ephemeral execution containers are destroyed after each job
  • Only minimal operational logs are temporarily retained for system reliability

Operational logs are retained for the minimum period required for system monitoring and debugging. They do not contain customer data payloads.

Section 5

How We Use Information

We use collected information solely to:

  • Provide and operate the DataForge service
  • Execute user-initiated data processing jobs
  • Maintain system reliability and performance
  • Respond to support and service inquiries
We do not
  • Sell or share personal data with third parties
  • Use customer data for advertising, profiling, or behavioral analysis
  • Train machine learning models or AI systems on customer data
  • Retain data for any purpose beyond operational necessity
Section 6

Cookies and Tracking

We do not use cookies, trackers, or behavioral analytics tools on our platform.

We do not track users across sessions, collect browsing behavior, or employ third-party analytics or advertising scripts.

Section 7

Data Security

Our platform is designed with security as a foundational architectural property, not an afterthought:

  • Zero-trust architecture at every execution layer
  • Isolated, ephemeral execution environments per job
  • No persistent data storage within the DataForge platform
  • Controlled access to all system components
  • Secure transmission protocols for all API communications

While no system is completely immune to risk, our architecture minimizes exposure by design. The most effective data protection is not retaining data in the first place.

Section 8

Third-Party Infrastructure

DataForge services run on third-party cloud infrastructure. Our current infrastructure providers include:

  • Google Cloud Platform — Cloud Run Jobs, Cloud SQL, Artifact Registry
  • Amazon Web Services (AWS) — ECS Fargate, RDS PostgreSQL, multi-region worker clusters
  • Microsoft Azure — Azure Container Instances, PostgreSQL Flexible Server, Key Vault

These providers process data as part of job execution within their infrastructure. We do not grant them independent rights to access, use, or retain your data beyond what is required for execution. Data handling by these providers is governed by their respective Data Processing Agreements.

Section 9

GDPR and CCPA Compliance

General Data Protection Regulation (GDPR)

If you are located in the European Economic Area (EEA), you have rights under the General Data Protection Regulation, including:

  • The right to access personal data we hold about you
  • The right to request correction of inaccurate personal data
  • The right to request deletion of your personal data
  • The right to restrict or object to processing
  • The right to data portability

Given that we collect only minimal contact information and do not retain customer data payloads, the scope of personal data we hold is intentionally narrow. To exercise any of these rights, contact us at support@hyperiondataforge.com.

California Consumer Privacy Act (CCPA)

If you are a California resident, you have rights under the California Consumer Privacy Act, including:

  • The right to know what personal information we collect and how it is used
  • The right to request deletion of personal information
  • The right to opt out of the sale of personal information
We Do Not Sell Personal Information

Hyperion DataForge does not sell personal information to any third party, under any circumstances. This applies to all users regardless of location.

To exercise your CCPA rights, contact us at support@hyperiondataforge.com. We will respond to verified requests within the timeframes required by applicable law.

Section 10

Your Rights

Regardless of your location, you may request:

  • Access to any contact information you have provided to us
  • Correction of inaccurate contact information
  • Deletion of your contact information from our records

To submit a request, contact us at support@hyperiondataforge.com. We will respond to all verified requests within 30 days.

Section 11

Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or applicable law. When we do:

  • The updated policy will be posted on this page
  • The effective date at the top of the policy will be revised
  • For material changes, we will make reasonable efforts to notify users directly

Continued use of the platform following any update constitutes acceptance of the revised policy.

Section 12

Contact

For questions, concerns, or requests regarding this Privacy Policy:

Hyperion DataForge, Inc.
support@hyperiondataforge.com
hyperiondataforge.com
Version 1.0 · Effective April 5, 2026 · Hyperion DataForge, Inc.

This document is intended for publication on the Hyperion DataForge website and for submission to platform marketplace compliance reviews including Google Cloud Marketplace and Microsoft Azure Marketplace.