Privacy Policy

When you create a KnownForge account we collect your name, work email address, and company name. No password is stored by KnownForge — authentication is handled by AWS Cognito.

When you connect a Salesforce org we store the OAuth access and refresh tokens needed to pull metadata on your behalf. We also store the metadata itself (objects, fields, flows, Apex classes, permission sets, and 150+ other component types) in your tenant-isolated S3 bucket.

We collect usage events (pages visited, pipeline stages triggered, deploy outcomes) to operate and improve the product. We do not use third-party analytics SDKs that phone home to ad networks.

Your data is used exclusively to provide KnownForge's pipeline automation, metadata intelligence, and AI-assisted development features. We do not sell, rent, or share personal data with third parties for advertising or marketing.

Salesforce metadata is processed to power features such as dependency analysis, org health scoring, package building, and TDD generation. It is never used to train AI models.

We send transactional emails only — account invitations, password resets, and deployment notifications. You will not receive marketing emails unless you explicitly opt in.

KnownForge uses Anthropic's Claude API to generate Technical Design Documents (TDDs), code reviews, and tech debt narratives. Only the minimum necessary context is sent to Claude: the story description and relevant metadata summaries. Full raw metadata is never transmitted.

We apply structural summarization (apex_analyzer, component_indexer) to reduce metadata to the relevant signal before any AI call, cutting both token cost and data exposure.

Anthropic's API data handling policies apply to any data sent for inference. See anthropic.com/privacy for details.

All data is stored on AWS infrastructure in us-east-1 (N. Virginia). Metadata is stored in tenant-isolated S3 buckets — no tenant can access another tenant's data.

Data at rest is encrypted with AES-256. All data in transit is encrypted via TLS 1.2 or higher. OAuth tokens and API keys are stored encrypted using industry-standard key management.

Access to production systems is restricted to KnownForge engineers with a legitimate need. We maintain an audit log of all deployments and pipeline actions.

Account and metadata data is retained while your account is active. If you close your account, all personal data and associated Salesforce metadata is purged from our systems within 30 days.

Pipeline audit logs (deploy records, validation results) may be retained for up to 1 year to support compliance and debugging requirements. These logs do not contain Salesforce record data — only metadata component names and operation outcomes.

KnownForge connects to Salesforce, GitHub, Jira, and Linear on your behalf using OAuth tokens you provide. These tokens are stored encrypted and used only to perform actions you trigger within the platform.

We use AWS SES to send email, AWS Secrets Manager to manage credentials, and hCaptcha to prevent bot registrations. Each service operates under its own privacy policy.

We do not use Facebook Pixel, Google Analytics, Mixpanel, or any behavioral tracking SDKs on app.knownforge.com.

You have the right to access, correct, or delete the personal data KnownForge holds about you. To exercise these rights, email privacy@knownforge.com. We will respond within 30 days.

You may disconnect any third-party integration (Salesforce, GitHub, Jira, Linear) from your org's Settings page at any time. Disconnecting revokes our stored OAuth token for that service.

If you are located in the EU or UK, you have additional rights under GDPR and UK GDPR, including data portability and the right to lodge a complaint with your supervisory authority.

Privacy inquiries: privacy@knownforge.com

Security disclosures: security@knownforge.com

Legal: legal@knownstandard.ai

KnownForge is operated by Known Standard LLC.