TSF Lite App
TSF in Action
TSF Engine Demo
Case Studies
The Science
Articles

Privacy & Legal Policy

Targeted Seasonal Forecasts (TSF) respect your privacy and are committed to safeguarding your personal and business data. This Privacy & Legal Policy explains how we collect, use, and protect the information shared through our websites, applications, and services.

1. Our Compliance Goal

TSF Demand is designed to meet Tier 1 compliance standards — equivalent to the requirements for SOC‑2 Type II and ISO‑27001 certification. Our infrastructure leverages Neon (PostgreSQL) and AWS hosting environments, both of which maintain SOC‑2, ISO‑27001, and GDPR compliance certifications. Our objective is to achieve full SOC‑2 certification for the TSF platform as the application matures and merchant data begins active processing.

2. Hosting & Data Isolation

All client data is stored in dedicated Neon databases. Each client has an independent database cluster and schema, completely isolated from other clients’ data.
  • There is no shared database between clients.
  • No data from one merchant is ever used, queried, or compared with data from another merchant.
  • Forecasting operations are executed within each merchant’s unique data environment.
This isolation prevents any chance of cross‑connection or data leakage between clients. All services run on encrypted connections (SSL/TLS). Neon provides encrypted storage by default, and all traffic between Neon and our application layer (hosted on Render/AWS) is encrypted in transit.

3. Data We Collect

a. Website & Form Data
When you interact with our site, we collect the information you voluntarily provide via Tally forms, such as:
  • Name, email address, and company/store name.
  • Shopify store URL or other relevant e‑commerce details.
  • Responses to early access, interest, or case study application forms.
b. Application Data (Forecast Clients)
When the TSF Lite App launches, merchants connecting through Shopify or other platforms will transmit limited sales and inventory history required to generate forecasts. This data is stored only in that merchant’s Neon database. We do not access, aggregate, or sell this data to any third parties.
c. Technical Logs
We may collect anonymized diagnostic and usage information (e.g., API timing, error logs, page interactions) to improve performance and monitor uptime.

4. How We Use Your Information

  • To provide and improve forecasting services.
  • To communicate regarding onboarding, updates, or support.
  • To evaluate case study applicants and coordinate participation.
  • To analyze usage trends in aggregate (never identifying individual merchants).
We will never sell or share identifying information with advertisers or unrelated third parties.

5. Case Study Participation & Data Sharing

Participation in a TSF case study is Participation in a TSF case study is voluntary and requires explicit consent. By applying, you agree that we may:
  • Review anonymized sales or forecast data for analytical and publication purposes.
  • Publish aggregated or anonymized metrics (e.g., accuracy rates, improvement percentages) that do not identify your company or products.
  • Use screenshots or visuals of forecasts only with written approval if any identifying information (store name, product names) is visible.
Participants retain full ownership of their underlying data. TSF will only publish data or visuals after explicit written consent.

6. Data Retention

  • Website/form data: retained for communication purposes and removed upon request.
  • Merchant data (forecasts and history): retained for active subscriptions and deleted within 60 days of termination or written request.
  • Case study data: retained only for the duration of the study and archived securely thereafter.

7. Security & Access Controls

  • All data is stored in encrypted Neon clusters with access restricted to designated TSF operations personnel.
  • Access is logged, audited, and monitored under SOC‑2 controls.
  • Forecast automation processes run under least‑privilege service roles.
  • Credentials and API keys are managed via encrypted environment variables and AWS Secrets Manager.

8. Compliance Roadmap

  1. SOC‑2 Type I (2026): formalize internal control policies and external audit readiness.
  2. SOC‑2 Type II (2027): ongoing compliance audit and monitoring.
  3. GDPR alignment (2026): ensure full portability and deletion rights for EU clients.
  4. Data Processing Agreements (DPAs): available upon request once client onboarding begins.
  5. Penetration testing: annual independent review of security posture.

9. Third-Party Services

We use a small number of verified, compliant vendors:
  • Neon – data storage (SOC‑2, ISO‑27001, GDPR compliant)
  • AWS – compute and backup (SOC‑2, ISO‑27001, GDPR compliant)
  • Render – web hosting (ISO‑27001, SOC‑2 alignment)
  • Tally.so – form collection (GDPR compliant, EU data center).
Each service is vetted for data protection and minimal retention.

10. Your Rights

You have the right to:
  • Request a copy of your stored personal data.
  • Request correction or deletion of your information.
  • Withdraw consent for communications or participation at any time.
Requests can be sent to privacy@tsfdemand.com.

11. Updates to This Policy

We may update this Privacy & Legal Policy as our compliance framework evolves. Any major revisions will be announced via email to registered users and posted on tsfdemand.com/privacy.

12. Contact Information

TSF / Targeted Seasonal Forecasts Incorporated 254 Chapman Rd, Ste 208 #24609 Newark, Delaware 19702 Email: privacy@tsfdemand.com Website: https://TSFDemand.com
COMPANY
About TSFThe ScienceInvestment Opportunity
PRODUCT
TSF Lite AppPricingTSF Engine DemoCase StudiesJoin Beta
RESOURCES
ArticlesDemand Planning ROIA Microscope for TimeContact / Partners
LEGAL
Privacy Policy
Targeted Seasonal Forecasts Inc. 254 Chapman Rd. Ste. 208 #24609 Newark, DE 19702
© 2025 Targeted Seasonal Forecasts, Inc. All Rights Reserved