Privacy Policy

1. Introduction & Scope

This Privacy Policy explains how CUNE (“Company,” “we,” “us,” or “our”), operated by Masteryoda Solutions Pvt. Ltd., collects, uses, discloses, and safeguards personal information when you:

• Visit our website

• Use our product demo(s)

• Access our AI-powered workspace for insurance operations

(collectively, the “Services”).

Our Role

We act as:

• Data Controller for personal information collected through our website, marketing, and account administration.

• Data Processor / Service Provider for Customer Content processed within our enterprise platform pursuant to a Data Processing Addendum (“DPA”) with our business customers.

If you are a Customer, your agreement with us (including the DPA) governs our processing of Customer Content on your behalf.

2. Categories of Personal Information We Collect

A. Information You Provide

• Contact details: name, business email, phone number, company, role

• Account and profile data: username, preferences

• Support content: tickets, attachments, feedback

• Marketing preferences: subscriptions, event registrations

B. Automatically Collected Information

• Device & technical data: browser type, operating system, device type, IP address, general location

• Usage & telemetry data: pages visited, session duration, feature usage, crash logs

• Cookies and similar tracking technologies

3. Sources of Personal Information

We collect personal information from:

• You directly (forms, emails, in-product prompts)

• Automatic technologies (telemetry, cookies)

• Your employer (when provisioning platform access)

• Service providers and partners (analytics, payment processors, CRM tools)

• Integrations you enable (email/calendar, data storage, AMS/CRM connectors)

4. How We Use Your Information

We use personal information to:

Provide and Secure Services

• Authentication and account management

• Hosting and infrastructure management

• Fraud prevention and incident response

Operate and Improve the Platform

• Diagnostics and analytics

• Feature enhancement and quality assurance

Support & Communication

• Customer support

• Service-related communications

Research & Development

• Develop new capabilities and workflows

• Use de-identified or aggregated data where feasible

Marketing

• With your consent or as permitted by law

• You may opt out at any time

Legal Compliance

• Enforce agreements

• Protect rights, safety, and property

• Comply with applicable laws

5. AI & Automated Processing

Our Use of AI

We use AI models to assist with workflow automation (e.g., intake, routing, summarization) within the scope of the Services and applicable law.

We implement:

• Strict access controls

• Encryption

• Regular audits

We do not use Customer Content to train external foundation models.

Where possible, we anonymize or aggregate data for model quality and safety evaluation.

If automated outputs are generated:

• Your organization remains the decision-maker

• Human-in-the-loop and override mechanisms are available

6. Data Security

Our Security Commitment

We maintain administrative, organizational, and technical safeguards designed to protect personal information against unauthorized access, loss, misuse, alteration, or destruction.

However, no method of transmission or storage is 100% secure.

Technical Safeguards

• Encryption in transit and at rest

• Strict access controls

• Continuous monitoring and audits

• Incident response plans

Operational Safeguards

• Alignment with ISO standards

• Vendor security assessments

• Data minimization practices

• Regular employee training

7. Information Sharing

We do not sell personal information, and we do not share it for cross-context behavioral advertising where prohibited without required notices or rights.

We may share personal information:

• With service providers (hosting, analytics, communications, security)

• With professional advisors (legal, audit, insurance)

• For compliance and fraud prevention

• In connection with a business transfer (merger, acquisition), subject to honoring this Policy

8. International Transfers

We may process and store data in countries other than where it originates, including:

• United States

• European Union

• United Kingdom

• India

When transferring personal data internationally, we implement appropriate safeguards such as Standard Contractual Clauses (SCCs) consistent with applicable laws.

9. Data Retention

We retain personal information only as long as necessary for the purposes described in this Policy or as required by law.

• Customer Content retention follows customer instructions and our DPA.

• Limited records may be retained after account closure to comply with legal obligations, resolve disputes, and enforce agreements.

10. Your Privacy Rights

Depending on your location, you may have rights regarding your personal information. We will not discriminate against you for exercising your rights.

Access & Control Rights

You may:

• Access and port your personal information

• Correct inaccuracies

• Delete or erase personal information

• Restrict or object to processing

Preferences

• Withdraw consent (where applicable)

• Opt out of marketing communications

• Manage cookie preferences

To exercise your rights, contact us at: hello@getcune.com
We may verify your identity before processing your request.

11. Cookies and Tracking

We use cookies and similar technologies for:

• Authentication

• Analytics

• Feature performance

• Remembering preferences

You can manage cookies through your browser settings and, where required, through our cookie banner or preference center.

Do Not Track Signals

Some browsers send “DNT” signals. We currently do not respond to DNT signals.

12. Children’s Privacy

The Services are not directed to children under 13. If we learn we have collected personal information from a child under 13 without required consent, we will delete it.

13. Regional Disclosures

India (Digital Personal Data Protection Act, 2023)

• We act as a Data Fiduciary for our own data collection.

• We act as a Data Processor on behalf of our customers.

You may exercise applicable rights (access, correction, erasure, grievance redressal) by contacting:

Grievance Officer (DPDP 2023):
Hardik Agarwal
Email: hello@getcune.com

California (CCPA/CPRA)

• We do not “sell” personal information as defined by CCPA/CPRA.

• We do not “share” personal information for cross-context behavioral advertising without required notices.

California residents may exercise access, deletion, and correction rights by contacting us.

14. Third-Party Sites & Integrations

The Services may link to third-party sites or allow integrations. We do not control third-party privacy practices. Please review their privacy policies before sharing personal information.

15. Data Processing Addendum (DPA)

If your organization requires a DPA (including SCCs, UK IDTA, or India DPDP alignment), contact:

hello@getcune.com

We can provide our standard DPA and Trust Pack upon request.

16. Contact Us

Company: Masteryoda Solutions Pvt. Ltd. (d/b/a CUNE)
Email: hello@getcune.com
Address:
Mantri Commercio Tower-A
Marathahalli - Sarjapur Outer Ring Rd
Kariyammana Agrahara, Bellandur
Bengaluru, Karnataka 560103
India

17. Changes to This Policy

We may update this Privacy Policy from time to time.