Introduction & Scope

This Privacy Policy explains how CUNE (“Company,” “we,” “us,” or “our”), operated by Masteryoda Solutions Pvt. Ltd., collects, uses, discloses, and safeguards personal information when you visit our website, use our product demo(s), or access our AI-powered workspace for insurance operations (collectively, the “Services”).

We act as:

A data controller for personal information we collect through our website, marketing, and account administration.

A data processor/service provider for Customer Content processed within our enterprise platform pursuant to a Data Processing Addendum (“DPA”) with our business customers.

If you are a Customer, your agreement with us (including the DPA) governs our processing of Customer Content on your behalf.

Categories of Personal Information We Collect

A. Information You Provide

Contact details: name, business email, phone, company, role

Account and profile data: username, preferences

Content shared with support: tickets, attachments, feedback

Marketing preferences: subscriptions, event registrations

B. Automatically Collected Information

Device and technical data: browser/OS, device type, IP address, general location

Usage and telemetry: pages visited, session duration, feature usage, crash logs

Cookies and similar technologies

Sources of Personal Information

Directly from you (forms, emails, in-product prompts)

Automatically via the Services (telemetry, cookies)

From your employer (when they provision platform access)

From service providers and partners (e.g., analytics, payment, CRM)

From integrations you enable (e.g., email/calendar, data storage, or AMS/CRM connectors)

How We Use Your Information

We use the information we collect for the following purposes:

Provide and secure the Services: authentication, hosting, fraud prevention, incident response

Operate, maintain, and improve features: including diagnostics, analytics, and quality

Customer support and service communications

Research & development for new capabilities and workflows (de-identified/aggregated where feasible)

Marketing: with your consent or as otherwise permitted by law; you can opt out anytime

Legal compliance: and enforcing terms, protecting rights, safety, and property

AI & Automated Processing

Our Use of AI

We use AI models to assist with workflow automation (e.g., intake, routing, summarization) within the scope of the Services and applicable law. We implement strict access controls, encryption, and audits. We do not use Customer Content to train external foundation models.

Where possible, we anonymize or aggregate data for model quality and safety evaluations. If the Services surface automated outputs, your organization remains the decision-maker; human-in-the-loop and override mechanisms are available within the product.

Data Security

Our Security Commitment

We maintain administrative, organizational, and technical safeguards designed to protect personal information against unauthorized access, loss, misuse, alteration, or destruction. However, no method of transmission or storage is 100% secure.

Technical Safeguards

Encryption in transit and at rest

Strict access controls

Continuous monitoring & audits

Incident response plans

Operational Safeguards

Alignment with ISO standards

Vendor security assessments

Data minimization practices

Regular employee training

Information Sharing

We do not sell personal information, and we do not share it for cross-context behavioral advertising where prohibited without required notices/rights. We may share information only in the following circumstances:

With service providers for hosting, analytics, communications, and security

With professional advisors such as legal, audit, and insurance

For compliance and safety to prevent fraud or respond to lawful requests

In connection with business transfers like a merger or acquisition, where we’ll require the recipient to honor this Policy

International Transfers

Global Data Processing

We may process and store data in countries other than where it originates (e.g., the United States, the EU, the UK, India). When transferring personal data internationally, we implement appropriate safeguards (such as Standard Contractual Clauses) consistent with applicable laws.

Data Retention

How Long We Keep Information

We keep personal information only as long as necessary for the purposes described in this policy, or as required by law. For Customer Content, retention follows the customer’s instructions and our DPA. We may retain limited records after account closure to comply with legal obligations, resolve disputes, and enforce agreements.

Your Privacy Rights

Depending on your location, you may have rights regarding your personal information. We will not discriminate against you for exercising your rights.

Access & Control

Access and port your personal information

Correct inaccuracies

Delete/erase personal information

Restrict or object to processing

Preferences

Withdraw consent (where processing is based on consent)

Opt out of marketing

Manage cookie preferences

To exercise rights, contact us at hello@getcune.com. We may need to verify your identity.

Cookies and Tracking

We use cookies and similar technologies for authentication, analytics, feature performance, and remembering preferences. You can manage cookies via your browser settings and, where required, via our cookie banner or preference center.

Do Not Track Signals:

Some browsers send “DNT” signals. We currently do not respond to DNT signals.

Children’s Privacy

The Services are not directed to children under 13. If we learn we collected personal information from a child under 13 without required consent, we will delete it.

Regional Disclosures

India (Digital Personal Data Protection Act, 2023)

We act as a Data Fiduciary for our own data collection and a Data Processor on behalf of our customers.

You may exercise applicable rights (e.g., access, correction, erasure, grievance redressal) by contacting our Grievance Officer.

Grievance Officer (DPDP 2023): Hardik Agarwal, hello@getcune.com

California (CCPA/CPRA)

We do not “sell” personal information as defined by the CCPA/CPRA, nor do we “share” it for cross-context behavioral advertising without required notices/rights.

California residents may exercise access, deletion, and correction rights by contacting us.

Third-Party Sites & Integrations

The Services may link to third-party sites or allow integrations. We don’t control third-party privacy practices; please review their policies before providing personal information.

Data Processing Addendum (DPA)

If your organization needs a DPA (including SCCs/UK IDTA and India DPDP alignment), contact hello@getcune.com for our standard DPA and Trust Pack.

Contact Us

Questions or Concerns?

For any questions, security incidents, suspected misuse, or rights requests, please contact us:

Company: Masteryoda Solutions Pvt. Ltd. (d/b/a CUNE)

Email: hello@getcune.com

Address: Mantri Commercio Tower-A, Marathahalli - Sarjapur Outer Ring Rd, Kariyammana Agrahara, Bellandur, Bengaluru, Karnataka 560103

Changes to this Policy

We may update this Policy from time to time. If changes are material, we will notify you by updating the “Last updated” date and, where appropriate, through the Services or email.