Privacy Policy

How Qluster Corp. collects, uses, and protects personal data.

1. Who we are

This Privacy Policy (“Policy”) describes how Qluster Corp., a Delaware corporation (“Qluster,” “we,” “us,” or “our”) collects, uses, and shares personal data.

2. Scope

This Policy covers personal data we collect through the qluster.ai website (“Website”) and through your direct interactions with Qluster (for example, by submitting our contact form or emailing us).

If you are a customer who has signed an Order Form and Framework Agreement with Qluster, the handling of any data you upload into the Qluster service (“Customer Data”) is governed by that agreement and not by this Policy. This Policy covers only data we collect about you (e.g., as a website visitor, prospective customer, or authorized customer user).

3. What we collect

From website visitors:

  • Information you submit voluntarily via our contact form (such as name, email address, company name, and the contents of your message).
  • Basic analytics data automatically collected when you visit the Website: pages viewed, referring URL, approximate location derived from IP address, browser and device type.
  • Cookies and similar technologies (see Section 10).

From customer users:

  • Identifying information required to provision access to the Qluster service (name, work email, role, organization).
  • Authentication metadata (sign-in timestamps, IP address of sign-in, audit-log entries describing actions you take in the service).

We do not knowingly collect from any source: government-issued identifiers, financial account numbers, biometric data, health data, or precise geolocation.

4. How we use it

We use personal data to:

  • Provide, maintain, and improve the Website and the Qluster service.
  • Respond to inquiries and provide technical support.
  • Communicate with you about Qluster (operational notices, and, where you have opted in, occasional product updates).
  • Protect the security and integrity of the Website and the service, detect fraud or abuse, and enforce our Terms of Service.
  • Comply with legal obligations.

We do not sell personal information. We do not use Customer Data or personal data to train any artificial-intelligence or machine-learning model (ours or any third party’s).

5. Sharing and sub-processors

We share personal data only with the third-party service providers (“sub-processors”) needed to run the Website and the Qluster service. The current sub-processor list is published at /trust and is updated when it changes.

We may also disclose personal data when required by law (such as in response to a valid subpoena or court order) or to protect the rights, property, or safety of Qluster, our customers, or the public.

We do not sell or rent personal information to third parties for their own marketing purposes.

6. Security

We maintain administrative, physical, and technical safeguards designed to protect the security, confidentiality, and integrity of personal data, including measures to prevent unauthorized access, use, modification, or disclosure. Our security controls are summarized at /trust and our SOC 2 Type I report is available on request via our contact form.

No method of transmission over the public internet is fully secure, however, and we cannot guarantee absolute security. Information you send to us without encryption is subject to interception in transit.

7. Retention

We retain personal data only as long as needed to fulfill the purposes described in this Policy or to comply with legal obligations.

  • Website inquiry data (contact form submissions, email correspondence): up to 24 months from last activity, unless a longer retention is required by law or by an ongoing commercial relationship.
  • Customer user account data: for the duration of the customer’s agreement plus the period defined in the applicable Order Form for post-termination data return or deletion.
  • Analytics data: aggregated and retained per the configuration of our analytics provider (see Section 10).

8. Your rights

Subject to applicable law, you may have the right to:

  • Request access to the personal data we hold about you.
  • Request correction of inaccurate personal data.
  • Request deletion of your personal data.
  • Request a portable copy of your personal data.
  • Object to or restrict certain processing.
  • Opt out of marketing communications at any time.

To exercise any of these rights, contact us via our contact form. We will respond within the timeframes required by applicable law.

9. California residents (CCPA / CPRA)

If you are a California resident, the California Consumer Privacy Act, as amended by the California Privacy Rights Act (collectively, the “CCPA”), gives you specific rights with respect to your personal information.

Categories of personal information we collect: identifiers (name, email, IP address), commercial information (records of inquiries and interactions), internet activity (pages visited, referring URL), professional information (employer, job title).

Sources: directly from you, automatically from your device when you visit the Website, and (in limited cases) from your employer if you are accessing the Qluster service through a customer account.

Business purposes: to provide and improve the Website and service, communicate with you, ensure security, and comply with law.

Sale or sharing of personal information: Qluster does not sell personal information and does not share personal information for cross-context behavioral advertising as those terms are defined in the CCPA.

Sensitive personal information: We do not collect or use sensitive personal information for any purpose that requires CCPA notice or opt-in.

Your CCPA rights: the right to know, the right to delete, the right to correct, the right to opt out of any future sale or sharing, the right to non-discrimination for exercising your rights, and the right to designate an authorized agent. To exercise these rights, use our contact form. We will verify your request using the contact information we have on file and respond within 45 days.

10. Cookies and analytics

As of the date of this Policy, the Website does not deploy third-party analytics or advertising trackers. The Website loads web fonts from Google Fonts (fonts.googleapis.com, fonts.gstatic.com); when your browser fetches a font, your IP address and basic request headers are visible to Google for the duration of that request. The Website does not set any non-essential cookies.

We may add a privacy-respecting analytics provider in the future. If we do, we will update this Policy to disclose the provider and the categories of data collected.

You can control cookies through your browser settings. Disabling cookies may impair some Website functionality.

11. Children’s privacy

The Website and the Qluster service are not directed to children under the age of 16, and we do not knowingly collect personal data from anyone under 16. If you believe a child has provided personal data to us, contact us and we will delete it.

12. International transfers

Qluster is based in the United States and primarily processes personal data in the United States. If you access the Website or the Qluster service from outside the United States, your personal data may be transferred to, stored in, and processed in the United States. For data subjects in the European Economic Area, the United Kingdom, or Switzerland, standard contractual clauses are available on request.

13. Changes to this Policy

We may update this Policy from time to time. The “Last updated” date at the top of this page reflects the latest revision. Material changes will be announced via the Website or by direct notice where required by law.

14. Contact

Questions about this Policy? Use our contact form.