Scope & Applicability
This Privacy Policy ("Policy") describes how CubeBerry Inc. ("Company," "we," "us," or "our") collects, uses, discloses, and protects the personal information of users of the Cubeberry.AI platform, including the XConda suite of AI tools.
This Policy is designed to comply with applicable privacy laws including the California Consumer Privacy Act (CCPA/CPRA), Virginia Consumer Data Protection Act (VCDPA), Colorado Privacy Act (CPA), Connecticut Data Privacy Act (CTDPA), Utah Consumer Privacy Act (UCPA), and other applicable state and federal privacy laws.
We collect only what we need to run the platform, we never sell your data, and you can request deletion of your information at any time.
Information We Collect
Personal Information
| Category | Examples |
|---|---|
| Identifiers | Email address, username, IP address, device identifiers |
| Commercial Information | Subscription plan, payment history, credit usage records |
| Financial Information | Card type, last 4 digits, cardholder name (processed via PortOne) |
| Platform Activity | Browsing history on our platform, feature usage, preferences |
| Geolocation | Coarse location only (country/region via IP address) |
| Created Content | Media you generate or upload using our AI tools |
What We Do NOT Collect
- Social Security numbers or government ID numbers
- Precise geolocation data
- Health or medical information
- Racial or ethnic origin
- Religious beliefs or sexual orientation
Automatically Collected Data
When you use Cubeberry.AI we automatically collect IP address, device type and operating system, browser type and version, cookies and tracking technologies, service usage data, and crash/diagnostic reports.
How We Use Your Data
Service Provision
- Account creation, authentication, and access control
- Processing subscription payments and delivering platform credits
- Providing customer support
Platform Improvement
- Analyzing usage patterns to improve functionality
- Developing new features and testing improvements
- Conducting research and data analysis
Communications
- Sending transaction confirmations, receipts, and account notifications
- Responding to support inquiries
- Sending marketing emails only with your consent (opt-out available at any time)
Security & Legal Compliance
- Detecting and preventing fraud and unauthorized access
- Complying with applicable laws and regulations
- Enforcing our Terms of Service
Your Privacy Rights
Depending on your state of residence, you have the following rights regarding your personal information:
Request what categories of personal information we collect, the sources, and how we use or share it.
Request deletion of your personal information, subject to limited legal exceptions.
Request correction of inaccurate personal information we hold about you.
Opt out of sale or sharing of personal information (we do not sell or share your data).
Limit our use of sensitive personal information to only what's needed to deliver our services.
We will never deny service, charge different prices, or reduce quality because you exercised a privacy right.
State-Specific Rights
California Residents: Right to opt-out of sale/sharing, right to limit use of sensitive personal information, and additional CCPA/CPRA disclosure requirements.
Virginia, Colorado, Connecticut, Utah Residents: Right to appeal our decision regarding your rights request. Right to opt-out of profiling (we do not engage in profiling).
Exercising Your Rights
To submit a privacy rights request, contact us via any of the methods below. We will verify your identity and respond within 45 days (extendable by 45 days with notice). There is no fee to submit a request.
+82-70-8095-2302
Mon–Fri 10:00–17:00 KST
Log in to XConda → Settings → Privacy
Data Retention
We retain personal information only as long as necessary for the purposes stated in this policy.
| Data Type | Retention Period | Legal Basis |
|---|---|---|
| Account Information | Until deletion + 90 days | Contract performance |
| Payment Records | 7 years | Tax & financial regulations |
| Usage Data | 2 years | Legitimate interest |
| Customer Support Records | 3 years | Contract performance |
| Marketing Consent | Until withdrawn + 30 days | Consent |
After retention periods expire, we securely delete or anonymize your personal information.
Data Security
We implement administrative, technical, and physical safeguards to protect your personal information.
Employee privacy training, access controls, and authorization procedures.
TLS/SSL encryption in transit, encryption at rest, secure authentication, intrusion detection.
Secure data centre facilities, restricted server access, environmental controls.
Despite these safeguards, no internet transmission or electronic storage method is 100% secure. We cannot guarantee absolute security.
Children's Privacy
Cubeberry.AI is not intended for children under 18 years of age. We do not knowingly collect personal information from anyone under 18. If we learn that we have inadvertently collected information from a child under 18, we will delete it promptly.
If you believe we have collected information from a child under 18, please contact us immediately at cubeberry@cuberry.kr.
International Data Transfers
Your personal information may be processed and stored in South Korea (primary data centre), the United States (cloud service providers), and other countries where our service providers operate.
We ensure adequate protection for international transfers through Standard Contractual Clauses (SCCs), service provider agreements with data protection obligations, and compliance with applicable data protection laws. International transfers do not affect your privacy rights under this Policy.
Cookies & Tracking Technologies
Types of Cookies We Use
| Type | Purpose |
|---|---|
| Strictly Necessary | Session management, authentication, security features |
| Analytics | Usage statistics, performance monitoring, error tracking |
| Preference | User settings, language preferences, interface customisation |
Your Cookie Choices
- Most browsers allow you to refuse or delete cookies. Disabling cookies may affect platform functionality.
- We honour Do Not Track (DNT) browser signals for California residents.
- You can opt out of Google Analytics at tools.google.com/dlpage/gaoptout.
Email Communications & CAN-SPAM
We comply with the CAN-SPAM Act for all commercial email communications to US recipients. All marketing emails include an unsubscribe link. We honour opt-out requests within 10 business days.
Order confirmations, payment receipts, password resets, account alerts. These are necessary for account management and cannot be unsubscribed from.
Newsletters, feature announcements, special offers. You can opt out at any time using the unsubscribe link or by emailing us.
How to Unsubscribe
- Click "Unsubscribe" at the bottom of any marketing email
- Log in → Settings → Email Preferences → Toggle off Marketing Emails
- Email cubeberry@cuberry.kr with "Unsubscribe" in the subject line
Changes to This Policy
We may update this Privacy Policy from time to time. When we make material changes we will post the updated Policy on our website, update the "Last Updated" date, and notify you via email if you have provided one. For material changes, we will provide at least 30 days' notice.
Your continued use of Cubeberry.AI after changes become effective constitutes acceptance of the updated Policy.
Contact Us
For any privacy-related questions, requests, or concerns, please reach out through any of the following channels:
+82-70-8095-2302
Mon–Fri 10:00–17:00 KST
Lunch break 12:00–13:00
CubeBerry Inc.
Room 309, Gwangju Content Startup Center
60 Jejung-ro, Nam-gu
Gwangju, Republic of Korea 61649
CubeBerry Inc.
Attn: Privacy / Data Protection
cubeberry@cuberry.kr
CubeBerry Inc. | CEO: Jinseo Lee | Business Reg. No: 480-88-03079
Mail-Order Business Registration No: 2025-Gwangju Namgu-0464