Privacy Policy

We use the information we collect to:

• Provide, maintain, and improve our services and platform
• Process payments and send billing-related communications
• Respond to inquiries and provide customer support
• Send service updates and project-related communications
• Analyze usage patterns to improve user experience
• Detect, prevent, and address technical issues or security threats
• Comply with legal obligations

We do not sell your personal information to third parties. We do not use your data for targeted advertising.

We may share your information with:

• Stripe — for secure payment processing
• Resend — for transactional email delivery
• Cloudinary — for media storage and delivery
• Vercel / AWS — for hosting and infrastructure
• Analytics providers — for anonymized usage analytics

These third parties are contractually obligated to protect your data and use it only for the purposes we specify. We may also disclose information when required by law or to protect our rights.

We implement industry-standard security measures to protect your personal information, including:

• TLS/SSL encryption for all data in transit
• Encrypted database storage for sensitive information
• Regular security audits and vulnerability assessments
• Role-based access controls for internal systems
• Secure payment processing via Stripe (PCI DSS compliant)

While we strive to protect your data, no method of transmission or storage is 100% secure. We cannot guarantee absolute security.

We retain your personal information for as long as necessary to provide our services and fulfill the purposes described in this policy. Specifically:

• Account data is retained while your account is active
• Project data is retained for the duration of the project plus 2 years
• Billing records are retained for 7 years for tax and legal compliance
• Analytics data is anonymized after 26 months

You may request deletion of your data at any time by contacting us at hello@cubite.io. We will process deletion requests within 30 days, subject to legal retention requirements.

Depending on your location, you may have the following rights:

• Access — request a copy of the personal data we hold about you
• Correction — request correction of inaccurate data
• Deletion — request deletion of your personal data
• Portability — request your data in a machine-readable format
• Objection — object to processing of your data
• Restriction — request restriction of processing

To exercise any of these rights, contact us at hello@cubite.io. We will respond within 30 days.

If you are located in the European Economic Area (EEA), we process your data under the following legal bases:

• Contract performance — processing necessary to deliver our services
• Legitimate interest — improving our services and security
• Consent — for optional analytics and marketing communications
• Legal obligation — tax, accounting, and regulatory requirements

You have the right to lodge a complaint with your local data protection authority if you believe we have not complied with applicable data protection laws.

Our services are not directed to children under 16. We do not knowingly collect personal information from children under 16. If we learn that we have collected data from a child under 16, we will take steps to delete it promptly. If you believe a child has provided us with personal data, please contact us.

We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated "Last updated" date. We encourage you to review this policy periodically. Continued use of our services after changes constitutes acceptance of the updated policy.

If you have questions or concerns about this Privacy Policy or our data practices, please contact us:

• Email: hello@cubite.io
• Website: cubite.io