Privacy Policy
Ultima actualizare: June 2026
This document is an informational draft and must be reviewed by a legal specialist before publication.
Who we are
ForkloreLabs ([legal entity]) is a digital services provider specialising in website creation, local SEO optimisation and AI-based automations, primarily serving small and medium businesses in the Republic of Moldova and Romania.
This privacy policy describes how we collect, use and store personal data submitted through the form on the forklorelabs.com website.
What data we collect
Through the audit form on the website, we collect exclusively the data you enter voluntarily:
• Name — required field; used to address you personally in our response.
• Company — required field; helps us understand the context of your business.
• Website or social media page — optional field; can be a link to a website, Facebook, Instagram or Google Business Profile.
• Contact details (email, phone, WhatsApp or Telegram) — required field; used exclusively to respond to your enquiry.
• Free-text message — optional field; description of the problem or service requested.
In addition to the visible fields, the system automatically records a few technical context parameters, exclusively from the page URL: the source page from which the form was submitted, UTM parameters (utm_source, utm_medium, utm_campaign) if present in the URL, and optionally interest parameters (package, industry, demo) if passed in the link. These parameters are taken from the URL and do not represent independent tracking or profiling.
We do not collect IP addresses, do not install analytics or advertising cookies, and do not use any third-party tracking scripts (Google Analytics, Facebook Pixel, Hotjar or similar).
How we use the data
The data submitted through the form is used exclusively for the purpose for which you provided it: analysing your enquiry and preparing a response or a preliminary proposal for ForkloreLabs services.
We do not use the data for direct marketing, do not sell it and do not share it with third parties other than those described below.
How we transmit and store data
Form data is transmitted through a BFF server (Next.js API Route) running on our servers. Transmission is done via one of the routes below, in the priority order configured at server level:
1. ForkloreLabs internal API — if the environment variable FORKLORE_API_URL is configured, data is transmitted to a secure internal endpoint that persists it and notifies the team.
2. Telegram — if the variables TELEGRAM_BOT_TOKEN and TELEGRAM_CHAT_ID are configured, the enquiry is sent as a plain text message (without formatting) to the ForkloreLabs team's internal Telegram channel.
3. External webhook — if the variable AUDIT_WEBHOOK_URL is configured (e.g. an internal n8n or Make flow), data is sent to that endpoint.
4. Server log — if no delivery route is configured, data is recorded in the application's server log, accessible exclusively to the ForkloreLabs technical team.
Authentication secrets (tokens, webhook URLs) are server-only environment variables and never reach the browser.
We do not use third-party cloud CRM databases, email marketing services or external storage platforms other than those mentioned above.
Data retention period: data is retained for the duration necessary to process your enquiry and for a maximum of [X months/years] from the last interaction. For early deletion, please contact us through the form on the website.
Legal basis for processing
We process your data on the basis of the explicit consent given by completing and submitting the form (Art. 6(1)(a) GDPR / applicable personal data protection legislation).
By pressing the submit button, you confirm that you have read this policy and agree to the processing of your data for the purpose described.
Your rights
You have the right to request at any time:
• Access to the data we hold about you.
• Rectification of incorrect or incomplete data.
• Erasure of data ("the right to be forgotten").
• Restriction of or objection to processing.
• Portability of data in a structured format.
To exercise these rights, please contact us through the form on the website (forklorelabs.com/en/contact/) or through the audit form, stating in the message field that you are requesting the exercise of a GDPR right.
We will respond within a maximum of 30 calendar days.
Contact and complaints
If you have questions about this policy or about how we process your data, you can contact us through the form on the website.
If you believe your rights have been infringed, you have the right to lodge a complaint with the competent supervisory authority: the National Centre for Personal Data Protection (CNPDCP) in the Republic of Moldova or the National Supervisory Authority for Personal Data Processing (ANSPDCP) in Romania, depending on the applicable jurisdiction.
Changes to this policy
This policy may be updated periodically. The date of the last modification is indicated at the top of the page. We recommend you review it periodically.
Continued use of the website and form after the publication of changes constitutes acceptance of the updated version.