Privacy Policy

ForthLogic Internal HR Portal - Privacy Policy

Effective Date: January 1, 2025
Last Updated: January 1, 2025

1. Introduction

ForthLogic ("Company," "we," "us," or "our") is committed to protecting the privacy and security of personal information collected through our Internal HR Portal ("Portal"). This Privacy Policy explains how we collect, use, store, and protect your personal information in compliance with applicable privacy laws and regulations.

2. Scope and Application

This Privacy Policy applies to:

All ForthLogic employees, contractors, and authorized personnel
Personal and professional information accessed through the HR Portal
Data processing activities related to employment, benefits, and HR services
Information collected during your employment lifecycle with ForthLogic

3. Information We Collect

3.1 Personal Information

Identity Information: Full name, employee ID, Social Security Number, date of birth
Contact Information: Home address, phone numbers, email addresses, emergency contacts
Employment Information: Job title, department, manager, start date, employment status
Compensation Data: Salary, bonuses, benefits enrollment, tax withholdings
Performance Data: Reviews, goals, training records, certifications

3.2 Technical Information

Portal Usage: Login times, pages accessed, features used, session duration
Device Information: IP address, browser type, operating system, device identifiers
Security Logs: Authentication attempts, access patterns, security events

3.3 Sensitive Information

With your explicit consent or as required by law, we may collect:

Health information for benefits administration
Background check results
Financial information for direct deposit and benefits
Diversity and inclusion data for reporting purposes

4. How We Use Your Information

4.1 Primary Purposes

Employment Administration: Managing your employment relationship, payroll, and benefits
HR Services: Processing requests, managing leave, performance evaluations
Compliance: Meeting legal and regulatory requirements
Security: Protecting Portal integrity and preventing unauthorized access
Communication: Sending important company and employment-related information

4.2 Secondary Purposes

Analytics: Improving Portal functionality and user experience
Training: Providing professional development opportunities
Planning: Workforce planning and organizational development
Reporting: Creating anonymized reports for business purposes

5. Information Sharing and Disclosure

5.1 Internal Sharing

Information may be shared internally with:

HR personnel for employment-related purposes
Your direct managers for performance and project management
IT personnel for technical support and security
Finance team for payroll and benefits administration
Legal team for compliance and risk management

5.2 External Sharing

We may share information with third parties only when:

Service Providers: Benefits administrators, payroll processors, background check companies
Legal Requirements: Court orders, subpoenas, regulatory investigations
Business Transfers: Mergers, acquisitions, or asset sales (with appropriate protections)
Consent: When you provide explicit consent for specific purposes

5.3 International Transfers

If you work in international locations, your information may be transferred to other countries where ForthLogic operates, always with appropriate safeguards in place.

6. Data Security and Protection

6.1 Technical Safeguards

Encryption: All data is encrypted in transit and at rest
Access Controls: Role-based access with multi-factor authentication
Monitoring: Continuous security monitoring and threat detection
Backup: Regular data backups with secure storage

6.2 Administrative Safeguards

Training: Regular privacy and security training for all personnel
Policies: Comprehensive data protection policies and procedures
Audits: Regular security audits and compliance assessments
Incident Response: Established procedures for security incidents

6.3 Physical Safeguards

Secure Facilities: Restricted access to data centers and offices
Device Security: Encrypted devices and secure disposal procedures
Clean Desk: Policies requiring secure handling of physical documents

7. Data Retention

7.1 Retention Periods

Active Employment: Information retained throughout employment
Post-Employment: Retained according to legal requirements and business needs
Specific Records: Tax records (7 years), personnel files (varies by jurisdiction)
Benefits Information: Retained per plan requirements and regulations

7.2 Secure Disposal

When retention periods expire, information is securely destroyed using industry-standard methods.

8. Your Privacy Rights

8.1 Access Rights

You have the right to:

Access your personal information in the Portal
Request copies of your employment records
Understand how your information is being used

8.2 Correction Rights

You may:

Update your contact and personal information
Request correction of inaccurate information
Submit changes through the Portal or HR department

8.3 Additional Rights (Where Applicable)

Depending on your location, you may have additional rights including:

Data portability
Restriction of processing
Objection to processing
Erasure (subject to legal retention requirements)

9. Cookies and Tracking Technologies

9.1 Portal Cookies

We use cookies and similar technologies to:

Maintain your login session
Remember your preferences
Improve Portal functionality
Analyze usage patterns

9.2 Cookie Management

You can manage cookie preferences through your browser settings, though this may affect Portal functionality.

10. Third-Party Services

10.1 Integrated Services

The Portal may integrate with third-party services for:

Benefits administration
Learning management
Performance tracking
Communication tools

10.2 Third-Party Privacy

Each integrated service has its own privacy policy. We encourage you to review these policies.

11. Privacy by Design

ForthLogic implements privacy by design principles:

Data Minimization: Collecting only necessary information
Purpose Limitation: Using data only for stated purposes
Transparency: Clear communication about data practices
Security: Implementing appropriate technical and organizational measures

12. Compliance Framework

We comply with applicable privacy laws including:

General Data Protection Regulation (GDPR)
California Consumer Privacy Act (CCPA)
Health Insurance Portability and Accountability Act (HIPAA)
State and federal employment laws

13. Privacy Incident Response

In the event of a privacy incident:

Immediate assessment and containment
Notification to affected individuals as required by law
Cooperation with regulatory authorities
Implementation of corrective measures

14. Changes to This Privacy Policy

We may update this Privacy Policy to reflect:

Changes in legal requirements
New Portal features or services
Feedback from employees and stakeholders
Best practice developments

Significant changes will be communicated through the Portal and email notifications.

15. Contact Information

15.1 Privacy Questions

For privacy-related questions or concerns:

Privacy Officer
Email: privacy@forthlogic.com
Phone: [Privacy Officer Phone]

Human Resources
Email: hr@forthlogic.com
Portal: Submit through HR Help Desk

15.2 Data Protection Officer (Where Applicable)

For locations requiring a Data Protection Officer:

Data Protection Officer
via the People Operations Department

15.3 Regulatory Complaints

You have the right to file complaints with relevant data protection authorities in your jurisdiction.

16. Acknowledgment and Consent

By using the ForthLogic Internal HR Portal, you acknowledge that you have read and understood this Privacy Policy and consent to the collection, use, and disclosure of your personal information as described herein.

Effective Date: January 1, 2025
Document Version: 1.0
Next Review Date: January 1, 2026

This Privacy Policy is part of your employment terms and conditions. Please retain a copy for your records.