Last updated: 12 June 2026
This Privacy Policy explains how DemoForge collects, uses and protects personal data when you use our interactive demo and tutorial authoring service (the "Service"). We process personal data in accordance with the EU General Data Protection Regulation (GDPR) and Finnish data protection law.
The data controller for personal data processed through your account is:
Digerati ("DemoForge", "we")
Tykkimiehenaktu 3 as 1, Raisio, Finland — Business ID FI15456609
Contact: simo.salminen@gmail.com
For content you upload into a workspace, you (the customer) are the controller of any personal data contained in that content, and DemoForge acts as your processor as described in section 8.
We do not use third-party advertising or cross-site tracking cookies. See our Cookie Policy.
| Purpose | Legal basis (GDPR Art. 6) |
|---|---|
| Provide accounts, workspaces and core features | Performance of a contract |
| Process AI suggestions, drafts, translations and narration | Performance of a contract |
| Billing and managing subscriptions/seats | Performance of a contract; legal obligation |
| Securing the Service and preventing abuse | Legitimate interests |
| Improving and maintaining the Service | Legitimate interests |
| Service and security communications | Performance of a contract; legitimate interests |
| Optional marketing emails (if any) | Consent |
When you use AI-assisted features, the relevant content — for example a screenshot and the text you are editing — is sent to our AI subprocessors to generate output. This content is processed to fulfil your request and is not used by us to build advertising profiles. See section 6 for the subprocessors involved.
We do not sell personal data. We share data only with:
| Provider | Purpose |
|---|---|
| Supabase | Cloud hosting, database, authentication and file storage |
| Anthropic (Claude) | AI hotspot suggestions, draft explanations and translations |
| Inworld AI | Text-to-speech voice-over generation |
| Optional "Sign in with Google" authentication |
Where a subprocessor processes data outside the EU/EEA, such transfers are protected by appropriate safeguards such as the EU Standard Contractual Clauses.
Some of our subprocessors may process data outside the EU/EEA. In those cases we rely on adequacy decisions or Standard Contractual Clauses to ensure an equivalent level of protection.
For personal data contained in content you upload, we act on your instructions as a processor: we process it only to provide the Service, we apply appropriate security measures, and we assist you with data-subject requests and breach notifications as required. Our subprocessors in section 6 apply.
Subject to applicable law, you have the right to access, rectify, erase, restrict or object to processing, to data portability, and to withdraw consent at any time. To exercise these rights, contact [contact email]. You also have the right to lodge a complaint with the Finnish Data Protection Ombudsman (tietosuoja.fi) or your local supervisory authority.
We use technical and organizational measures — including encryption in transit, hashed credentials, access controls and row-level database security — to protect personal data. No method of transmission or storage is completely secure, but we work to protect your data and to notify you of material breaches as required by law.
The Service is intended for business use and is not directed to children under 16. We do not knowingly collect their personal data.
We may update this Privacy Policy from time to time. Material changes will be notified in-app or by email. The "Last updated" date above reflects the latest version.
Privacy questions or requests: simo.salminen@gmail.com