The ForgeThe Forgeby HustleForge
Security

Security Starts With Controlled Web Access

The Forge is a managed web platform. Your organization does not receive an appliance, executable, or local Forge server to install, patch, or maintain. Authorized users access the platform through a supported browser. What each person can view, change, approve, export, or administer is determined by their role, organization, location, responsibilities, and configured authority.

Security is applied across the complete operating relationship: user access, company records, integrations, automated actions, approvals, activity history, data export, and account termination.

Ask how The Forge protects access and information

Contractual or regulatory requirements for your business should be confirmed with the implementation team during a Forge Plan review.

No appliance. No desktop installation. No customer-hosted Forge server required.

  • Access the platform through the web
  • Centralized security updates
  • Role-based access
  • Customer-controlled users and permissions
  • Controlled integration access
  • Recorded administrative activity
  • Exportable customer records
  • Customer authorization for optional purchases and sensitive actions

Your Business Should Not Have to Maintain the Platform Protecting It

Traditional installed software places part of the security burden on every company computer, local server, manual update, and employee configuration.

The Forge is maintained as a managed web service. Security updates, platform changes, integration controls, access policies, and monitoring are managed centrally rather than depending on each customer to maintain a separate installation.

Your organization remains responsible for its users, approved integrations, account decisions, endpoint security, and internal access policies. HustleForge remains responsible for operating and maintaining the Forge application and the controls provided within it. Browser delivery does not eliminate every customer security responsibility.

How a request flows

From browser to record, every hop has an owner

  1. Authorized User
    Customer
  2. Supported Web Browser
    Customer
  3. Encrypted Web Connection (HTTPS)
    HustleForge
  4. Identity and Session Controls
    HustleForge
  5. Business, Location, and Role Permissions
    HustleForge· Customer-configured
  6. Forge Application and Approved Records
    HustleForge
  7. Workflow, Automation, and Approval Controls
    HustleForge· Human approval points
  8. Authorized Integrations
    Third-party provider· Read or approval-gated write
  9. Activity History, Monitoring, and Recovery
    HustleForge
Customer responsibilityHustleForge responsibilityThird-party provider responsibility
Secure Web Access

Access The Forge Through the Browser

The Forge is accessed through a supported web browser. Customers do not install a Forge desktop application or maintain a Forge server inside their organization. This delivery model allows platform updates and security corrections to be applied centrally without requiring every customer to manually patch a separate installation.

Do we need to install anything?

Encrypted browser connection

Verified

All connections between the browser and The Forge use HTTPS with TLS encryption enforced by the hosting provider.

Customer web sessionsAPI requests

Last verified 2026-07 · Automated configuration review

Content Security Policy

Verified

A Content Security Policy restricts which scripts, styles, images, fonts, and network connections the browser is allowed to load, and blocks page framing, plugin content, and base-URL hijacking to limit the impact of content-injection attacks.

Limitations: The marketing site is served as static prerendered pages, so script authorization uses a same-origin policy rather than per-request nonces
All web pages

Last verified 2026-07 · Automated header test

Security response headers

Verified

Additional security headers are set on all responses: X-Frame-Options DENY, X-Content-Type-Options nosniff, Referrer-Policy strict-origin-when-cross-origin, Permissions-Policy, and HSTS.

All HTTP responses

Last verified 2026-07 · Automated header test

Secure session management

Implemented

Authenticated sessions use HttpOnly cookies that are not accessible to client-side scripts. Sessions expire after a configured period of inactivity.

Limitations: Session timeout duration is not yet customer-configurable
Authenticated user sessions

Mobile browser access

Implemented

The Forge is accessible through supported mobile browsers with the same authentication and session protections as desktop access.

Limitations: Progressive web application not currently supported
Mobile web sessions
Identity and Sign-In

Confirm Who Is Accessing the Platform

Each user should access The Forge through an individual identity so permissions, assignments, approvals, changes, and administrative actions can be attributed to the correct person.

How do users sign in?

Individual user accounts

Implemented

Each user accesses The Forge through an individual account with a verified email address, so actions can be attributed to the correct person.

All platform users

Password requirements

Implemented

User passwords must meet minimum length and complexity requirements. Passwords are stored using PBKDF2 key derivation, not in plaintext.

Account creation and password changes

Account lockout and throttling

Implemented

Repeated failed sign-in attempts trigger rate limiting and temporary account lockout to resist brute-force attacks.

Limitations: Lockout thresholds are not yet customer-configurable
Sign-in attempts

Multi-factor authentication

Planned

An additional verification step beyond a password for sign-in.

Limitations: Not yet available
User sign-in

Single sign-on

Planned

Integration with an organization's existing identity provider for centralized authentication.

Limitations: Not yet available
Enterprise sign-in
Roles and Permissions

Each Person Sees and Controls Only What Their Role Requires

Access to one part of The Forge should not automatically provide access to every part of the business. Permissions can be scoped by business entity, location, role, department, and assigned responsibility.

Can employees see information outside their role?

Role-based access control

Implemented

Users are assigned roles that determine what they can view, create, modify, and approve within The Forge. Standard roles include owner, manager, employee, and contractor.

Limitations: Custom role definitions available on Pro and Operations tiers
All platform features

Permission scoping by location and entity

Configurable

Permissions can be scoped so a location manager sees only their assigned location and a business-entity administrator sees only their assigned entity.

Limitations: Requires Pro or Operations tier; Granular per-record permissions are not yet available
Multi-location and multi-entity accounts

Administrative separation

Implemented

Administrative actions such as user creation, role changes, and integration configuration require appropriate administrative authority and are recorded in the activity history.

Administrative functions
Business and Location Separation

One Executive View Without Giving Everyone Access to Everything

The Forge supports organizations managing multiple legal entities, operating companies, and locations. An owner may be authorized to view consolidated reporting across three businesses while a location manager sees only the company and location they manage.

Can access differ by business or location?

Business entity separation

Configurable

Multiple legal entities or operating companies can be managed under one account with access boundaries that prevent users assigned to one entity from accessing another entity's records without authorization.

Limitations: Available on Operations tier; Separation is enforced at the application layer, not at the database layer
Multi-entity accounts

Location-level access boundaries

Configurable

Users can be assigned to specific operating locations so they see only the records, schedules, and reporting relevant to their assigned location.

Limitations: Requires Pro or Operations tier
Multi-location accounts

Executive consolidated view

Configurable

Authorized executives can view reporting across multiple entities and locations without giving every user the same cross-organization access.

Limitations: Available on Operations tier
Executive reporting
Data Protection

Protect Information While It Moves and While It Is Stored

Customer information is protected during transmission and at rest using industry-standard methods appropriate to the platform's architecture and hosting environment.

How is our data protected?

Transport encryption

Verified

All data transmitted between the browser and The Forge is encrypted using HTTPS with TLS, enforced by the hosting infrastructure.

All network communication

Last verified 2026-07 · Automated configuration review

Encryption at rest

Implemented

Customer data stored in the platform database is encrypted at rest by the hosting provider's storage infrastructure.

Limitations: Encryption is managed by the hosting provider (Cloudflare); customer-managed keys are not supported
Platform database

Integration credential storage

Implemented

Integration credentials and API keys are stored separately from application data using the hosting platform's secret management capabilities.

Integration credentials

Input sanitization

Implemented

User-submitted content is sanitized before storage and display to prevent injection attacks.

All user inputs
Integration Security

Connecting a System Does Not Give It Unlimited Access

Integrations should be authorized for a defined purpose and limited to the permissions required for the approved workflow. An accounting integration should not automatically receive employee records, customer communications, or marketing data unless explicitly required and approved.

How are integrations secured?

Integration authorization

Implemented

Each integration must be explicitly authorized by an account administrator before it can access or modify customer data.

All integrations

Scoped integration permissions

Implemented

Integrations are configured with specific permissions that define which data they can read and which actions they can perform.

Limitations: Permission granularity varies by integration type
Configured integrations

Integration revocation

Implemented

Account administrators can disconnect an integration and revoke its access at any time.

Active integrations
Automation and Approval Controls

Automation Should Not Remove Authority

The Forge can automate follow-ups, assignments, reminders, escalations, and workflow transitions. Sensitive actions support authorization boundaries, approval thresholds, spending limits, and human review so automation assists operations without taking ownership away from the customer.

Can automated actions require approval?

Approval thresholds

Configurable

Actions above a configured dollar amount or sensitivity level can require owner or manager approval before they execute.

Limitations: Threshold types and granularity are expanding during beta
Optional spend, lead purchases, campaign changes

Emergency spending stop

Implemented

Authorized administrators can stop all optional purchasing activity when immediate intervention is required.

Marketplace and optional spend

Customer-controlled optional spend

Implemented

No optional campaign, lead purchase, subscription expansion, or external service is activated without the configured customer approval. Monthly caps, category limits, and approval workflows are configurable.

Marketplace, lead programs, campaigns
Audit History

Know Who Changed What and When

Administrative changes, permission updates, approval decisions, and security events are recorded with the actor, timestamp, organization, and action details so changes can be reviewed and attributed.

Is activity recorded?

Administrative activity history

Implemented

User creation, permission changes, integration changes, and administrative actions are recorded with the actor, timestamp, and action details.

Limitations: Retention period is defined by the platform, not yet customer-configurable; Activity history is recorded, not cryptographically immutable
Administrative actions

Sign-in activity

Implemented

Successful and failed sign-in attempts are recorded for review by account administrators.

Authentication events

Record change history

Limited Availability

Changes to customer records, workflow configurations, and approval decisions are recorded with the actor and timestamp.

Limitations: Change history coverage is expanding; not all record types are tracked yet
Key record types
Platform Monitoring

Security Includes Knowing When Something Is Not Working

The platform monitors application availability, authentication failures, integration errors, and unexpected conditions to detect and respond to issues that could affect customer operations.

How do you know when something breaks?

Application availability monitoring

Implemented

The platform is monitored for availability and performance. Degradations are detected and addressed by the operations team.

Limitations: Customer-facing status page is planned but not yet available
Platform application

Error detection

Implemented

Application errors, failed requests, and unexpected conditions are captured and reviewed to identify issues before they affect customer operations.

Application runtime

Integration health monitoring

Limited Availability

Connected integrations are monitored for authentication failures, synchronization errors, and provider outages.

Limitations: Monitoring depth varies by integration type
Configured integrations
Availability and Recovery

Protect the Operation From More Than Unauthorized Access

Security also includes operational resilience — backups, recovery procedures, and continuity planning so customer operations can be restored when incidents occur.

What happens if something goes down?

Database backups

Implemented

Platform databases are backed up according to the hosting provider's backup schedule. Backups are used for disaster recovery, not for individual record-level restoration on demand.

Limitations: Backup frequency and retention are determined by the hosting provider; Individual record-level restoration is not guaranteed
Platform database

Deployment rollback

Implemented

Failed or problematic deployments can be rolled back to restore the previous working version of the platform.

Platform deployments

Recovery testing

Planned

Recovery procedures are tested to verify that platform data and operations can be restored after an incident.

Limitations: Formal recovery testing program not yet established
Disaster recovery
Secure Development Practices

Security Is Part of Building the Platform

The Forge security program uses recognized web-application security guidance as an internal reference for control design and verification. Development practices include source control, code review, dependency management, and environment separation.

How is the platform built securely?

Source control and code review

Verified

All platform code is maintained in version control with a code review process before changes are merged.

Platform source code

Last verified 2026-07 · Process review

Dependency management

Implemented

Third-party dependencies are tracked, reviewed for known vulnerabilities, and updated as part of the development process.

Platform dependencies

Environment separation

Implemented

Development, staging, and production environments are separated so that changes are tested before reaching the production platform.

Development pipeline

External security assessment

Planned

Independent security testing of the platform by a qualified external party.

Limitations: External assessment not yet completed
Platform application
Secure Platform Updates

Updates Are Applied Centrally

Because The Forge is delivered as a managed web platform, customers do not need to manually install Forge updates across employee devices or maintain separate versions of the application. Updates are applied centrally, tested against the managed platform, and monitored after release.

How are updates delivered?

Centralized platform updates

Verified

Platform updates are applied centrally by HustleForge. Customers do not need to install updates on their devices or manage separate software versions.

Platform application

Last verified 2026-07 · Operational review

Staged deployment process

Implemented

Updates go through development, review, testing, and staging before reaching the production environment.

Platform deployments
Incident Response

A Clear Process When Something Requires Investigation

Security events are assessed for scope and customer impact. Corrective action is applied, affected customers are notified where required, and follow-up controls are reviewed.

What happens if there is a security incident?

Incident response process

Implemented

A defined process for detecting, assessing, containing, and resolving security events, including customer notification where required.

Limitations: Notification timelines are determined by the nature of the incident and applicable requirements, not by a fixed SLA
Security events

Vulnerability reporting

Implemented

A contact method for reporting security vulnerabilities discovered in The Forge, with an expected acknowledgment process.

Limitations: Formal bug bounty program not currently offered
Platform security
Shared Responsibility

What HustleForge Protects and What the Customer Controls

A secure web application does not eliminate the need for secure customer account management. Security responsibilities are shared between HustleForge, the customer, and third-party providers.

What are we responsible for?

User lifecycle management

Implemented

The customer controls which users have access, what roles they hold, and when access is removed. HustleForge provides the access-control capabilities.

User accounts

Endpoint and browser security

Implemented

The customer is responsible for the security of the devices and browsers used to access The Forge. HustleForge secures the platform application.

Customer devices
Customer Data Rights

Your Data Remains Under Your Organization's Control

The Forge is designed to help your organization operate on its information, not to trap that information inside the platform. Customer records should remain exportable according to the account's permissions, contractual terms, and applicable retention requirements.

Can we export our data?

Data export

Implemented

Authorized users can export customer-supplied records from The Forge in supported formats.

Limitations: Export formats and scope may vary by data type; Platform-generated analytics and derived data may not be exportable
Customer-supplied records

Data retention and deletion

Implemented

Customer data is retained according to the terms of the service agreement. Upon account termination, customer data is handled according to the documented retention and deletion process.

Limitations: Backup copies may be retained for a limited period after deletion; Legal retention requirements may override deletion requests
Customer data lifecycle

Customer data ownership

Implemented

Customer-supplied data remains the property of the customer organization. HustleForge does not sell, share, or use customer data for purposes outside the scope of operating The Forge.

Limitations: Aggregated, anonymized usage data may be used to improve the platform
All customer-supplied data

The Safest Sensitive Record May Be the One The Forge Does Not Need

The Forge should collect and synchronize only the information required for an approved business workflow. Consolidation means connecting the minimum context needed to coordinate the operation — not copying every record from every system into The Forge.

An appointment status without requiring full clinical notes.
A policy-renewal date without duplicating an entire carrier record.
A payroll-summary figure without processing payroll credentials.
An enrollment-workflow status without duplicating regulated education records.
A payment status without storing full payment-card information.
Security Status and Verification

Security Controls and Current Status

Every row below is generated from the same control registry that drives every other security claim on this page. Transparency about what is verified, configurable, or planned is a stronger signal than an unsupported badge.

ControlStatusPlansLast verified
Encrypted browser connection
Secure Web Access
VerifiedCore, Pro, Operations2026-07
Content Security Policy
Secure Web Access
VerifiedCore, Pro, Operations2026-07
Security response headers
Secure Web Access
VerifiedCore, Pro, Operations2026-07
Transport encryption
Data Protection
VerifiedCore, Pro, Operations2026-07
Source control and code review
Secure Development Practices
VerifiedCore, Pro, Operations2026-07
Centralized platform updates
Secure Platform Updates
VerifiedCore, Pro, Operations2026-07
Secure session management
Secure Web Access
ImplementedCore, Pro, Operations
Mobile browser access
Secure Web Access
ImplementedCore, Pro, Operations
Individual user accounts
Identity and Sign-In
ImplementedCore, Pro, Operations
Password requirements
Identity and Sign-In
ImplementedCore, Pro, Operations
Account lockout and throttling
Identity and Sign-In
ImplementedCore, Pro, Operations
Role-based access control
Roles and Permissions
ImplementedCore, Pro, Operations
Administrative separation
Roles and Permissions
ImplementedCore, Pro, Operations
Encryption at rest
Data Protection
ImplementedCore, Pro, Operations
Integration credential storage
Data Protection
ImplementedCore, Pro, Operations
Input sanitization
Data Protection
ImplementedCore, Pro, Operations
Integration authorization
Integration Security
ImplementedCore, Pro, Operations
Scoped integration permissions
Integration Security
ImplementedCore, Pro, Operations
Integration revocation
Integration Security
ImplementedCore, Pro, Operations
Emergency spending stop
Automation and Approval Controls
ImplementedCore, Pro, Operations
Customer-controlled optional spend
Automation and Approval Controls
ImplementedCore, Pro, Operations
Administrative activity history
Audit History
ImplementedCore, Pro, Operations
Sign-in activity
Audit History
ImplementedCore, Pro, Operations
Application availability monitoring
Platform Monitoring
ImplementedCore, Pro, Operations
Error detection
Platform Monitoring
ImplementedCore, Pro, Operations
Database backups
Availability and Recovery
ImplementedCore, Pro, Operations
Deployment rollback
Availability and Recovery
ImplementedCore, Pro, Operations
Dependency management
Secure Development Practices
ImplementedCore, Pro, Operations
Environment separation
Secure Development Practices
ImplementedCore, Pro, Operations
Staged deployment process
Secure Platform Updates
ImplementedCore, Pro, Operations
Incident response process
Incident Response
ImplementedCore, Pro, Operations
Vulnerability reporting
Incident Response
ImplementedCore, Pro, Operations
User lifecycle management
Shared Responsibility
ImplementedCore, Pro, Operations
Endpoint and browser security
Shared Responsibility
ImplementedCore, Pro, Operations
Data export
Customer Data Rights
ImplementedCore, Pro, Operations
Data retention and deletion
Customer Data Rights
ImplementedCore, Pro, Operations
Customer data ownership
Customer Data Rights
ImplementedCore, Pro, Operations
Permission scoping by location and entity
Roles and Permissions
ConfigurablePro, Operations
Business entity separation
Business and Location Separation
ConfigurableOperations
Location-level access boundaries
Business and Location Separation
ConfigurablePro, Operations
Executive consolidated view
Business and Location Separation
ConfigurableOperations
Approval thresholds
Automation and Approval Controls
ConfigurableCore, Pro, Operations
Record change history
Audit History
Limited AvailabilityPro, Operations
Integration health monitoring
Platform Monitoring
Limited AvailabilityCore, Pro, Operations
Multi-factor authentication
Identity and Sign-In
PlannedCore, Pro, Operations
Single sign-on
Identity and Sign-In
PlannedOperations
Recovery testing
Availability and Recovery
PlannedCore, Pro, Operations
External security assessment
Secure Development Practices
PlannedCore, Pro, Operations
Shared Responsibility

What HustleForge Protects and What the Customer Controls

A secure web application does not eliminate the need for secure customer account management.

HustleForge is responsible for

  • Operating the Forge web application
  • Maintaining supported platform components
  • Applying platform updates
  • Managing platform infrastructure
  • Providing access-control capabilities
  • Protecting platform credentials
  • Monitoring supported platform services
  • Maintaining backups according to scope
  • Recording supported security events
  • Responding to platform incidents
  • Supporting authorized exports
  • Documenting third-party providers

Your organization is responsible for

  • Choosing authorized users
  • Removing former employees
  • Assigning correct permissions
  • Protecting user credentials
  • Enabling available authentication protections
  • Maintaining endpoint and browser security
  • Reviewing approval requests
  • Authorizing integrations
  • Managing connected third-party accounts
  • Reporting suspicious activity
  • Reviewing employee access periodically
  • Following internal privacy and retention requirements
  • Determining which information should be entered into the platform
Security by Role

What Security Looks Like From Your Seat

Owner or Executive

You should retain authority over who accesses the company, what they can approve, and where information can move.

  • Control which users have platform access across all entities and locations
  • Set approval thresholds for optional spending and sensitive actions
  • Authorize and revoke integration connections
  • View consolidated reporting without giving every user the same visibility
  • Export business records and manage account termination
  • Review administrative activity and security status
Operations Manager

Employees need enough access to complete the work — not unrestricted access to the business.

  • Manage schedules, assignments, and customer information for assigned locations
  • View work history and completion records for direct reports
  • Assign contractors limited access to job-relevant information
  • Escalate issues that exceed configured authority
  • Access reporting relevant to operational responsibility
Finance or Payroll

Financial context should be visible only to the people authorized to use it.

  • Access approved hours and wage summaries within authorized entities
  • View operational cost context for budgeting and reporting
  • Export financial summaries in supported formats
  • Access accounting integration data within configured boundaries
  • Sensitive report access limited by role configuration
Technical Administrator

Every connection, permission, and administrative change should have an owner.

  • Provision and deactivate user accounts
  • Configure role assignments and permission templates
  • Authorize and manage integration connections
  • Review credential expiration and configuration changes
  • Access audit history for administrative actions
  • Manage data export and account configuration
Employee or Contractor

Your account should show the work you need without exposing the rest of the company.

  • Access assigned records, schedules, and required actions
  • View customer information relevant to assigned work
  • Complete job-specific forms and workflows
  • Access through mobile browser with the same session protections
  • Report lost devices or suspicious account activity
  • Account removed promptly when engagement ends
Industry Boundaries

Where The Forge Draws the Line by Industry

Regulated or specialized records are not automatically pulled into The Forge. Each industry has a documented boundary for what stays in a specialized system.

What matters in this industry

  • Customer addresses and site-access information
  • Job photos and inspection records
  • Employee location during work hours
  • Contractor vs. employee access levels
  • Payment information for services
  • Shared devices on job sites
  • Temporary worker access for seasonal staff

How The Forge draws the boundary

  • Field employees see only assigned jobs and required customer information
  • Contractor accounts receive limited access without broad employee or financial visibility
  • Customer addresses are visible for assigned work, not across the full customer database
  • Shared-device access controlled through individual sign-in, not saved sessions
  • Temporary accounts can be created and removed to match employment periods
Security Certifications and Compliance

Clear About What Has and Has Not Been Certified

No certification completed

The Forge has not currently completed a SOC 2, ISO 27001, HIPAA, PCI DSS, or other independent certification unless specifically listed below as completed. Do not treat any of these frameworks as satisfied until this table is updated.

  • SOC 2 Type II

    SOC 2 readiness evaluation is planned. An independent examination has not been initiated.

    Not Started
  • ISO 27001

    ISO 27001 certification has not been pursued. Evaluation may follow SOC 2.

    Not Started
  • HIPAA

    The Forge does not currently process protected health information. HIPAA compliance is not applicable unless clinical data is handled.

    Not Started
  • PCI DSS

    The Forge does not store or process payment card data. Payment processing is handled by third-party providers.

    Not Started
Security FAQ

Questions Buyers Actually Ask

Report a security vulnerability

If you believe you have found a security vulnerability in The Forge, report it to security@hustleforge.tech with enough detail to reproduce the issue. Please report privately rather than disclosing publicly before it is addressed. We will acknowledge reports and investigate in a reasonable timeframe.

Security questions are part of every Forge Blueprint conversation.

The $500 Blueprint credits toward implementation if you move forward within 30 days.

This page reflects the current state of The Forge during beta. Controls marked planned are not yet available. Contact support@hustleforge.tech with questions about scope for your organization.