OpenEFA - User Control Panel

OpenEFA - Privacy policy

OpenEFA Forum - Privacy Policy

Last Updated: October 11, 2025

This policy explains in detail how OpenEFA (https://forum.openefa.com) collects, uses, and protects any information you provide when using our forum and associated services.

1. WHO WE ARE

OpenEFA is an open-source email security project operated by SegueLogic. Our forum is powered by phpBB software, but this privacy policy governs how WE (OpenEFA/SegueLogic) handle your personal data.

Forum URL: https://forum.openefa.com
Main Website: https://openefa.com
Contact: scott@openefa.com

2. INFORMATION WE COLLECT

2.1 Browsing Data
When you visit our forum, the phpBB software creates cookies containing: user identifier (user-id), anonymous session identifier (session-id), and topic read status. Your IP address is logged in server access logs for security and spam prevention purposes.

2.2 Registration Data
If you create an account, we require: Username (publicly displayed), Password (encrypted, never stored in plain text), and Email address (not publicly displayed unless you choose to make it visible).

2.3 Posted Content
Forum posts, private messages, profile information, and attachments you voluntarily provide.

2.4 Contact Form Submissions
When you use the contact form, we collect: your name, email address, message content, and IP address (for spam prevention).

3. HOW WE USE YOUR INFORMATION

We use your information ONLY for: Operating and improving the OpenEFA forum, communicating with you about OpenEFA-related topics, preventing spam/abuse/security threats, complying with legal obligations, and providing support.

We will NEVER: Sell your personal information to third parties, use your data for advertising or marketing unrelated to OpenEFA, share your email with external organizations without consent, or track you across other websites for profiling.

4. DATA SHARING AND DISCLOSURE

We do not share your personal information with third parties except: when required by law (e.g., court orders, subpoenas), to prevent illegal activity or protect our rights, or with your explicit consent.

Technical note: phpBB software is open-source and maintained by phpBB Limited, but they do NOT have access to your data on our forum.

5. COOKIES

Our forum uses cookies to: keep you logged in between visits, track which topics you've read, and store your preferences (language, timezone, style). You can disable cookies in your browser, but this may limit forum functionality.

6. DATA SECURITY

We take reasonable security measures: passwords are encrypted using bcrypt, HTTPS/SSL encryption for all connections, spam protection (reCAPTCHA, fail2ban), and regular security updates. However, no internet transmission is 100% secure. Please use a unique password for this forum.

7. YOUR RIGHTS (GDPR COMPLIANCE)

If you are in the European Union, you have these rights: Access (request a copy of your personal data), Rectification (correct inaccurate information), Erasure (request deletion of your account and data), Portability (receive your data in a portable format), Objection (object to certain data processing), and Withdraw Consent (opt-out of optional features). To exercise these rights, contact us at: scott@openefa.com

8. DATA RETENTION

Active accounts: Indefinitely while active. Deleted accounts: Personal data removed within 30 days. Forum posts: May remain visible (with username removed) for forum continuity. Server logs: Retained for 90 days for security purposes.

9. CHILDREN'S PRIVACY

Our forum is not intended for children under 13. We do not knowingly collect data from children. If you believe a child has registered, please contact us immediately.

10. THIRD-PARTY SERVICES

Our forum uses: Google reCAPTCHA for spam protection (see Google's Privacy Policy) and Email delivery via our mail server (no third-party email services). We are not responsible for the privacy practices of external websites linked from our forum.

11. CHANGES TO THIS POLICY

We may update this privacy policy periodically. Changes will be posted on this page with an updated "Last Updated" date. Continued use of the forum after changes constitutes acceptance of the new policy.

12. CONTACT US

For questions about this privacy policy or to exercise your data rights: Email: scott@openefa.com or Contact Form: https://forum.openefa.com/app.php/contactadmin

13. LEGAL BASIS FOR PROCESSING (GDPR)

We process your data under: Consent (you voluntarily provide information when registering or posting), Legitimate Interest (operating the forum, preventing spam/abuse), and Legal Obligation (complying with applicable laws).

By using this forum, you acknowledge that you have read and understood this privacy policy.