Privacy Policy

Effective June 29, 2026

1. Introduction

Welcome to Qorden. This Privacy Policy explains how Qorden collects, uses, stores, shares, transfers, protects, and otherwise processes personal data when individuals access, use, purchase, subscribe to, administer, or interact with Qorden’s websites, applications, software platforms, APIs, artificial intelligence technologies, communication services, customer portals, support channels, and related products and services (collectively, the “Services”).

The Services are provided by Qorden AI LTD. | Registered Office: Unit GA-00-SZ-L1-RT-208 Level 1, Gate Avenue South Zone Dubai International Financial Centre (DIFC) Dubai, United Arab Emirates 

“Qorden”, “we”, “our”, or “us”).

Qorden develops and operates advanced artificial intelligence technologies that facilitate multilingual communication, speech recognition, speech-to-speech translation, transcription, meeting intelligence, speech analytics, conversational AI, video dubbing, content localization, and other communication technologies designed to enable seamless collaboration across languages, regions, and industries.

We recognize that privacy, confidentiality, security, transparency, accountability, and responsible innovation are fundamental to maintaining the trust of our customers, users, partners, and stakeholders. Accordingly, Qorden is committed to processing personal data fairly, lawfully, transparently, and securely while complying with applicable privacy, data protection, cybersecurity, artificial intelligence, consumer protection, and regulatory requirements.

This Privacy Policy explains the categories of personal data we collect, the purposes for which such information is processed, the legal bases that support our processing activities, how information may be shared or transferred, the safeguards implemented to protect personal data, and the rights available to individuals under applicable laws.

Qorden may process personal data in a variety of circumstances, including when individuals visit our websites, create accounts, subscribe to services, participate in meetings, utilize translation or transcription services, engage with customer support, access APIs, participate in webinars or events, or otherwise interact with our technology platforms.

As a global technology organization, Qorden may process information across multiple jurisdictions and through carefully selected infrastructure providers, service providers, affiliates, and authorized personnel. Whenever personal data is transferred, accessed, or processed, Qorden implements appropriate technical, organizational, contractual, and security safeguards designed to ensure compliance with applicable laws and to protect the confidentiality, integrity, and availability of personal data.

By accessing or using the Services, individuals acknowledge that they have read and understood this Privacy Policy and agree to the processing of personal data as described herein, subject to any rights available under applicable law.

2. About Qorden

Qorden is an artificial intelligence company focused on enabling multilingual communication, intelligent collaboration, and advanced speech technologies for organizations and individuals around the world.

The company develops and operates software platforms, AI services, communication tools, and enterprise technologies that utilize machine learning, natural language processing, speech recognition, speech synthesis, translation engines, large language models, and other artificial intelligence technologies to deliver innovative communication solutions.

Qorden’s solutions are designed to help organizations overcome language barriers, improve collaboration, enhance customer engagement, automate communication workflows, and derive meaningful insights from voice, text, and communication data.

The Services offered by Qorden may include:

  • Real-time speech-to-speech translation;
  • Real-time transcription services;
  • Live multilingual captions;
  • Meeting intelligence and analytics;
  • Speech analytics and quality monitoring;
  • Conversational AI and virtual assistants;
  • Customer interaction analytics;
  • AI-generated summaries and action items;
  • Video dubbing and localization technologies;
  • Content translation and language services;
  • Enterprise communication and collaboration platforms.

Qorden operates internationally through its Irish and United Arab Emirates entities.

Qorden AI LTD. | Registered Office: Unit GA-00-SZ-L1-RT-208 Level 1, Gate Avenue South Zone Dubai International Financial Centre (DIFC) Dubai, United Arab Emirates

As part of delivering global services, Qorden may maintain operational, technical, support, compliance, customer success, research, development, administrative, and security functions in multiple jurisdictions. Such activities may be performed by employees, contractors, affiliates, or authorized service providers operating under contractual obligations that require compliance with applicable privacy, confidentiality, and information security requirements.

Qorden is committed to responsible innovation and seeks to design, develop, deploy, and operate its technologies in a manner that respects privacy, promotes transparency, reduces risk, and supports ethical and accountable use of artificial intelligence. This commitment extends across the entire lifecycle of our products and services, including design, development, deployment, operation, monitoring, maintenance, and continuous improvement.

3. Applicability and scope

This Privacy Policy applies to all personal data processed by Qorden in connection with the operation, administration, delivery, support, maintenance, and improvement of the Services.

The Policy applies to individuals who visit our websites, register for accounts, subscribe to services, participate in meetings or communications processed through the Services, contact our support teams, attend events, interact with marketing communications, utilize APIs, or otherwise engage with Qorden products and technologies.

This Privacy Policy applies regardless of whether personal data is collected directly from individuals, obtained through enterprise customers, received through authorized integrations, generated through system usage, or provided by trusted third parties acting on behalf of customers or users.

The Policy applies to information processed through:

  • Websites and web applications;
  • Mobile applications;
  • Desktop applications;
  • Cloud-hosted software platforms;
  • APIs and integrations;
  • Customer administration portals;
  • Artificial intelligence services;
  • Translation and transcription services;
  • Speech analytics platforms;
  • Customer support systems;
  • Marketing and communication channels;
  • Professional services engagements;
  • Training and educational services.

This Privacy Policy applies to both business-to-business (B2B) and business-to-consumer (B2C) environments unless a separate privacy notice, customer agreement, or contractual arrangement expressly provides otherwise.

In certain circumstances, Qorden may process personal data solely on behalf of enterprise customers. Where this occurs, the customer generally acts as the Data Controller and Qorden acts as the Data Processor. In such situations, the customer’s own privacy notices, policies, and contractual instructions may govern aspects of the processing activity in addition to the provisions described within this Privacy Policy.

This Privacy Policy does not apply to third-party websites, products, applications, or services that may be linked to, integrated with, or accessible through the Services. Qorden is not responsible for the privacy practices, content, security practices, or operations of third parties, and users are encouraged to review the privacy notices of those organizations before providing personal information.

Where applicable law imposes additional requirements or grants additional rights that are not expressly described within this Privacy Policy, Qorden will process personal data in accordance with such legal obligations and rights.

4. Definitions

For the purposes of this Privacy Policy, the following terms shall have the meanings set forth below unless the context requires otherwise.

Personal Data” means any information relating to an identified or identifiable natural person. An identifiable natural person is one who can be identified directly or indirectly through reference to identifiers such as a name, identification number, location data, online identifier, device identifier, or one or more factors specific to the physical, physiological, genetic, mental, economic, cultural, or social identity of that individual.

Processing” means any operation or set of operations performed on personal data, whether by automated means or otherwise, including collection, recording, organization, structuring, storage, adaptation, retrieval, consultation, use, disclosure, transmission, dissemination, alignment, combination, restriction, erasure, or destruction.

Data Controller” means the natural or legal person, public authority, agency, or other body that alone or jointly determines the purposes and means of processing personal data.

Data Processor” means a natural or legal person, public authority, agency, or other body that processes personal data on behalf of a Data Controller.

Customer Data” means information uploaded, transmitted, generated, stored, shared, or otherwise made available by customers or users through the Services.

User” means any individual who accesses, uses, administers, interacts with, or participates in the Services.

AI Systems” means machine learning models, speech recognition engines, language models, translation engines, speech synthesis systems, analytics engines, conversational AI technologies, and other artificial intelligence technologies utilized within the Services.

Subprocessor” means any third-party service provider engaged by Qorden to process personal data on its behalf in connection with the provision of the Services.

Applicable Data Protection Laws” means all laws, regulations, and legal requirements governing the collection, use, storage, transfer, disclosure, protection, and processing of personal data, including where applicable the GDPR, UK GDPR, Irish Data Protection Act 2018, DIFC Data Protection Law No. 5 of 2020, and other applicable privacy laws.

Services” means all products, applications, websites, software platforms, APIs, communication technologies, artificial intelligence services, support services, and related offerings provided by Qorden.

These definitions are intended to support consistency, clarity, and transparency throughout this Privacy Policy and shall be interpreted broadly where necessary to achieve the objectives of applicable privacy and data protection legislation.

5. Data controller and data processor roles

Qorden’s role in relation to personal data depends upon the nature of the Services being provided and the relationship between Qorden, its customers, and end users.

In certain circumstances, Qorden acts as a Data Controller because it determines the purposes for which personal data is collected and the manner in which that information is processed. Examples include the administration of customer accounts, operation of the Qorden website, management of subscriptions, marketing communications, recruitment activities, vendor management, and the administration of customer relationships.

In other circumstances, particularly where enterprise customers use the Services to process information relating to their employees, customers, contractors, or business contacts, Qorden acts as a Data Processor. In these situations, the customer determines the purposes and means of processing while Qorden processes personal data solely in accordance with the customer’s documented instructions and applicable contractual obligations.

Where Qorden acts as a Data Processor, customers remain responsible for ensuring that they have an appropriate legal basis for processing personal data and for providing any notices, disclosures, or consents required by applicable law.

Qorden may also support customers through Data Processing Agreements (“DPAs”), Standard Contractual Clauses, security documentation, compliance questionnaires, and other mechanisms intended to facilitate compliance with applicable privacy requirements.

In limited circumstances, Qorden and a customer may act as independent controllers or joint controllers in relation to specific processing activities. Where this occurs, responsibilities will generally be governed by the applicable contractual arrangements between the parties.

Regardless of whether Qorden acts as a Controller or Processor, Qorden implements technical, organizational, and contractual safeguards designed to protect personal data and support compliance with applicable legal requirements.

6. Categories of personal data we collect

The categories of personal data processed by Qorden vary depending upon the Services utilized, the relationship between Qorden and the individual, the customer’s configuration of the Services, and the context in which information is collected.

Qorden may collect and process identity information, including names, usernames, employee identifiers, job titles, company affiliations, profile photographs, and other information used to identify users and administrators within the Services.

Qorden may collect contact information such as business email addresses, telephone numbers, physical addresses, billing addresses, and other communication details required to establish and maintain customer relationships.

Account-related information may include authentication credentials, account preferences, user permissions, subscription details, licensing information, support records, and activity history associated with the use of the Services.

When users participate in meetings, calls, conferences, webinars, training sessions, or other communications processed through the Services, Qorden may process communications data. Such information may include voice recordings, audio streams, video streams, meeting transcripts, captions, translations, summaries, chat messages, shared content, participant information, and collaboration records.

Qorden may collect technical and operational information automatically through the use of the Services. This may include IP addresses, browser information, operating system information, application versions, device identifiers, network information, session information, diagnostic logs, performance metrics, and security events.

Financial and transaction-related information may also be processed, including billing records, payment status information, subscription histories, tax information, invoices, and related commercial records. Payment card information is typically processed directly by authorized payment providers and is generally not stored by Qorden.

Qorden seeks to limit the collection of personal data to that which is relevant, necessary, and proportionate to the purposes described within this Privacy Policy.

7. Sources of personal data

Qorden obtains personal data from a variety of sources depending upon how individuals interact with the Services.

Information may be collected directly from individuals when they create accounts, subscribe to services, register for events, submit inquiries, request demonstrations, contact support teams, participate in surveys, or otherwise communicate with Qorden.

Enterprise customers may provide information relating to employees, contractors, customers, meeting participants, agents, or other authorized users who access or interact with the Services. In such cases, the customer is generally responsible for ensuring that appropriate notices and legal bases are in place.

Qorden may also receive information through integrations with third-party systems, including identity providers, collaboration platforms, communication platforms, customer relationship management systems, contact center technologies, and business productivity tools.

Certain information is automatically generated through the operation of the Services. This includes system logs, security logs, device information, usage statistics, performance metrics, diagnostic information, and other technical records necessary for operating, securing, and improving the Services.

In some cases, Qorden may receive information from publicly available sources, business partners, service providers, event organizers, or referral programs where such collection is permitted by law.

Qorden takes reasonable steps to ensure that personal data obtained from third parties is collected and processed in accordance with applicable legal requirements.

8. Purposes of processing

Qorden processes personal data for a variety of legitimate business, operational, security, contractual, and regulatory purposes.

The primary purpose of processing is to provide and operate the Services. This includes enabling multilingual communication, delivering speech-to-speech translation, generating transcriptions, producing captions, facilitating collaboration, generating meeting summaries, supporting speech analytics, and providing AI-powered functionality.

Personal data is also processed to create and manage customer accounts, authenticate users, administer subscriptions, provide customer support, respond to inquiries, deliver service notifications, and maintain customer relationships.

Qorden processes information to maintain the security, availability, and integrity of its platforms. This includes monitoring systems, detecting suspicious activities, preventing unauthorized access, investigating incidents, managing vulnerabilities, enforcing policies, and protecting customers, users, and infrastructure.

Qorden may process personal data to improve products and services. Such activities may include analyzing system performance, identifying usability issues, evaluating feature effectiveness, improving translation quality, enhancing speech recognition accuracy, developing new functionality, and conducting internal research and development activities.

Information may also be processed to comply with legal obligations, regulatory requirements, contractual commitments, court orders, governmental requests, tax obligations, and industry standards.

Where permitted by law, Qorden may use personal data to communicate information regarding products, services, updates, events, webinars, research publications, and other business-related information that may be of interest to customers and users.

Qorden endeavors to ensure that all processing activities are proportionate, necessary, and aligned with clearly defined business and legal objectives.

9. Legal bases for processing

Qorden processes personal data only where a lawful basis exists under applicable data protection laws.

One of the primary legal bases relied upon by Qorden is contractual necessity. Personal data may be processed where such processing is necessary to enter into, perform, administer, or enforce a contract with an individual or customer. This includes providing access to the Services, administering accounts, delivering support, managing subscriptions, and fulfilling contractual obligations.

Qorden may also process personal data on the basis of legitimate interests. These interests include operating and improving the Services, securing systems, preventing fraud, protecting intellectual property, conducting business operations, supporting customer relationships, and ensuring the continued reliability of the Services. Where legitimate interests are relied upon, Qorden seeks to balance its interests against the rights and freedoms of affected individuals.

Certain processing activities may be based on consent. Examples include marketing communications, optional cookies, participation in promotional activities, voice cloning services, or other activities where consent is required by law. Individuals may withdraw consent at any time, although withdrawal will not affect the lawfulness of processing conducted before such withdrawal.

Qorden may process personal data where necessary to comply with legal obligations. Such obligations may arise under tax laws, financial reporting requirements, data protection regulations, court orders, regulatory investigations, and other legal requirements applicable to Qorden’s operations.

In limited circumstances, processing may be necessary to protect vital interests, exercise legal rights, defend legal claims, or support matters of substantial public interest where recognized by applicable law.

10. Special category data, biometric data, and sensitive information

Certain Qorden Services involve the processing of audio, speech, and communication content. Depending upon how the Services are used, this information may contain personal data that is considered sensitive or subject to enhanced protection under applicable law.

Voice recordings may contain information relating to an individual’s identity, language, nationality, health information, accessibility needs, personal opinions, professional discussions, or other information disclosed during communications. In some jurisdictions, certain voice characteristics may also be considered biometric information where they are processed for identification purposes.

Qorden does not intentionally collect sensitive personal data unless such processing is necessary to provide the Services, required by customers, voluntarily provided by users, or otherwise permitted by law. Where processing of special category data is required, Qorden implements additional safeguards designed to protect such information.

Access to sensitive information is restricted to authorized personnel with a legitimate business need. Additional security controls, monitoring measures, encryption technologies, and contractual safeguards may be applied where appropriate.

Qorden does not use voice recordings or speech data for surveillance purposes, behavioral profiling, or identity verification activities unless expressly disclosed, contractually authorized, and legally permissible.

Enterprise customers utilizing recording, transcription, translation, speech analytics, or related Services remain responsible for ensuring that they have obtained any necessary consents, notices, permissions, or legal bases required under applicable laws governing communications and recordings.

Qorden encourages customers and users to avoid unnecessarily disclosing sensitive personal information unless such disclosure is required for legitimate business purposes and supported by an appropriate legal basis.

11. Artificial intelligence processing and transparency

Artificial intelligence technologies form a core component of the Services provided by Qorden. These technologies are designed to assist users in communication, translation, transcription, analytics, collaboration, content generation, and related activities.

Qorden utilizes a combination of proprietary technologies, third-party artificial intelligence services, machine learning models, natural language processing systems, speech recognition engines, speech synthesis technologies, translation engines, large language models, and analytical systems to provide the functionality available through the Services.

Depending on the specific service utilized, artificial intelligence systems may process spoken language, written text, meeting content, communication metadata, customer-provided information, user instructions, and other information necessary to generate requested outputs.

Examples of AI-powered functionality may include:

  • Speech-to-text transcription;
  • Real-time translation;
  • Speech-to-speech communication;
  • AI-generated summaries;
  • Action item extraction;
  • Conversation analysis;
  • Sentiment analysis;
  • Knowledge retrieval;
  • Speech analytics;
  • Language identification;
  • Accent adaptation;
  • Video dubbing;
  • Automated quality monitoring;
  • AI-powered assistance features.

Qorden is committed to providing transparency regarding the use of artificial intelligence within its Services. Users should understand that AI systems operate by identifying patterns, making predictions, generating outputs, and processing information through statistical and computational methods.

While Qorden continuously works to improve the accuracy and reliability of its AI systems, artificial intelligence outputs may occasionally contain inaccuracies, omissions, mistranslations, incomplete information, or unintended results. AI-generated outputs should therefore be reviewed by appropriately qualified individuals before being relied upon for legal, financial, regulatory, employment, medical, compliance, or other high-impact decisions.

Qorden does not guarantee that AI-generated outputs will always be accurate, complete, or suitable for any particular purpose.

12. Real-time translation, transcription, and speech processing

Certain Services involve the real-time processing of voice, audio, video, text, and communication content in order to facilitate multilingual communication and collaboration.

When users participate in meetings, calls, conferences, webinars, or other communications processed through the Services, Qorden may analyze spoken language to generate transcriptions, captions, translations, summaries, analytics, and related outputs.

Processing activities may include:

  • Capturing audio streams;
  • Speech recognition;
  • Language detection;
  • Translation processing;
  • Speech synthesis;
  • Speaker segmentation;
  • Transcription generation;
  • Caption generation;
  • Meeting intelligence processing;
  • Quality analysis.

Such processing is performed solely for the purposes of providing the requested Services, improving user experience, supporting customer requirements, and maintaining service functionality.

Customers utilizing recording, transcription, translation, or analytics features remain responsible for ensuring that all required notices, disclosures, permissions, and legal bases are obtained before communications are recorded or processed.

Qorden does not monitor customer communications for independent business purposes and processes communication content only as necessary to provide the Services and comply with legal obligations.

13. Automated decision-making and human oversight

Qorden believes that meaningful human oversight remains an important component of responsible artificial intelligence deployment.

As a general principle, Qorden does not make decisions that produce legal effects or similarly significant effects on individuals solely through fully automated processing without appropriate safeguards.

Where AI-generated outputs are provided through the Services, such outputs are intended to support human decision-making rather than replace human judgment.

Customers and users remain responsible for reviewing AI-generated outputs before relying upon them in business, legal, financial, employment, compliance, healthcare, or regulatory contexts.

Qorden maintains governance processes designed to support transparency, accountability, monitoring, and oversight of AI-enabled systems. These measures may include testing procedures, quality assurance reviews, model performance monitoring, risk assessments, human review mechanisms, and continuous improvement activities.

Where applicable law grants individuals rights relating to automated decision-making, Qorden will facilitate the exercise of those rights in accordance with legal requirements.

14. Data sharing and disclosure

Qorden may share personal data with carefully selected third parties where necessary to provide the Services, operate its business, comply with legal obligations, or protect legitimate interests.

Personal data may be disclosed to:

  • Cloud infrastructure providers;
  • Hosting providers;
  • Payment processors;
  • Customer support providers;
  • Identity and authentication providers;
  • Security service providers;
  • Analytics providers;
  • Professional advisors;
  • Auditors;
  • Legal counsel;
  • Regulatory authorities;
  • Government agencies where required by law.

All third parties processing personal data on behalf of Qorden are subject to contractual obligations designed to protect personal data and ensure compliance with applicable privacy requirements.

Qorden does not sell personal data.

Qorden does not rent personal data.

Qorden does not disclose personal data to third parties for independent marketing purposes without an appropriate legal basis.

15. Subprocessors and service providers

To provide secure, reliable, and scalable services, Qorden may engage subprocessors and service providers that assist with hosting, infrastructure, communications, security, analytics, billing, support, monitoring, and related operational functions.

Subprocessors may process personal data only for purposes authorized by Qorden and subject to contractual obligations that require:

  • Confidentiality;
  • Information security controls;
  • Data protection compliance;
  • Incident reporting;
  • Access restrictions;
  • Audit cooperation;
  • Appropriate transfer safeguards.

Qorden conducts reasonable due diligence before engaging subprocessors and periodically reviews the security and compliance posture of service providers that process personal data.

A current list or categories of subprocessors may be made available upon request or through customer agreements where applicable.

16. International data transfers

Qorden operates globally and may transfer Personal Data across national borders where necessary to provide the Services, maintain its infrastructure, and support its customers.

Personal Data may be processed within:

  • United Arab Emirates;
  • Other countries where Qorden, its affiliates, cloud service providers, subprocessors, or authorized service providers operate.

Where Personal Data is transferred outside the United Arab Emirates, Qorden implements appropriate contractual, technical, and organizational safeguards to ensure that Personal Data continues to receive a level of protection consistent with applicable UAE data protection laws and regulatory requirements.

Such safeguards may include:

  • Data Processing Agreements;
  • Contractual obligations with service providers and subprocessors;
  • Appropriate technical and organizational security measures;
  • Encryption and secure transmission of Personal Data;
  • Access controls and information security measures aligned with recognized industry standards.

Qorden periodically reviews its international data transfer practices and updates its safeguards as necessary to comply with applicable laws, regulatory requirements, and evolving best practices.

17. Information security and technical safeguards

Protecting personal data is a fundamental component of Qorden’s operational and governance framework.

Qorden maintains administrative, technical, physical, and organizational safeguards designed to protect personal data against accidental loss, unauthorized access, disclosure, alteration, misuse, or destruction.

Examples of security measures include:

  • Encryption in transit;
  • Encryption at rest where appropriate;
  • Role-based access controls;
  • Multi-factor authentication;
  • Security monitoring;
  • Network segmentation;
  • Vulnerability management;
  • Penetration testing;
  • Security awareness training;
  • Incident response procedures;
  • Vendor risk assessments;
  • Secure software development practices.

Access to personal data is limited to authorized personnel whose responsibilities require such access.

Although no security system can guarantee absolute protection, Qorden continually reviews and improves its security practices to address evolving threats and industry expectations.

18. Data retention

Qorden retains personal data only for as long as necessary to fulfill the purposes for which it was collected, comply with legal obligations, resolve disputes, enforce agreements, protect legal rights, and maintain business records.

Retention periods vary depending upon the nature of the information, the services utilized, contractual commitments, customer instructions, regulatory obligations, and operational requirements.

Examples may include:

  • Account information;
  • Billing records;
  • Security logs;
  • Support records;
  • Customer communications;
  • Meeting metadata;
  • Audio recordings;
  • AI-generated outputs.

Where customers control retention settings, Qorden generally follows customer-configured retention periods subject to legal and contractual obligations.

Upon expiration of applicable retention periods, personal data may be securely deleted, anonymized, aggregated, or otherwise rendered incapable of identifying individuals.

19. Data subject rights

Depending upon applicable law, individuals may have certain rights regarding their personal data.

Such rights may include:

  • Right of access;
  • Right to rectification;
  • Right to erasure;
  • Right to restriction of processing;
  • Right to data portability;
  • Right to object;
  • Right to withdraw consent;
  • Rights relating to automated decision-making;
  • Right to lodge complaints with supervisory authorities.

Qorden is committed to responding to privacy rights requests in accordance with applicable legal requirements and regulatory timelines.

Where Qorden acts solely as a Data Processor, requests may be referred to the relevant customer for handling under the customer’s instructions.

Qorden may request information necessary to verify an individual’s identity before fulfilling a request.

20. Exercising your rights and complaints

Individuals wishing to exercise privacy rights, submit complaints, request information, or raise concerns regarding the processing of personal data may contact Qorden using the contact details provided in this Privacy Policy.

Privacy requests should include sufficient information to enable Qorden to identify the requester, understand the nature of the request, and verify identity where necessary.

Qorden will review all requests fairly, objectively, and in accordance with applicable legal requirements.

Where an individual believes that Qorden has not adequately addressed a privacy concern, the individual may have the right to lodge a complaint with a competent supervisory authority, including the Irish Data Protection Commission, the DIFC Commissioner of Data Protection, or another authority having jurisdiction over the matter.

Qorden is committed to working constructively with individuals and regulators to resolve privacy concerns and continuously improve its privacy and data protection practices.

21. Cookies and similar technologies

Qorden uses cookies, pixels, local storage objects, web beacons, SDKs, and similar technologies to support the operation, security, functionality, and performance of its Services.

Cookies are small text files placed on a user’s device that allow websites and applications to recognize devices, remember preferences, maintain sessions, improve functionality, and collect information regarding how Services are used.

Qorden uses strictly necessary cookies required for authentication, security, session management, fraud prevention, and essential platform functionality. These technologies enable users to access secure areas of the Services, maintain active sessions, and utilize features that would otherwise be unavailable.

Qorden may also utilize performance, analytics, functional, and preference-related technologies that help us understand how users interact with the Services, identify areas for improvement, measure platform performance, and improve overall user experience.

Where required by applicable law, non-essential cookies and tracking technologies will only be deployed following the user’s consent through an appropriate consent management mechanism.

Users may manage cookie preferences through browser settings, consent management tools, or platform-specific privacy settings. Disabling certain technologies may impact the functionality and performance of some Services.

Additional information regarding the use of cookies and tracking technologies may be provided in a separate Cookie Policy published by Qorden.

22. Marketing communications

Qorden may communicate with existing customers, prospective customers, partners, event attendees, and other individuals regarding products, services, updates, events, webinars, educational content, industry developments, and other business-related matters.

Marketing communications may be delivered through email, telephone, messaging platforms, social media channels, webinars, newsletters, or other communication methods permitted by applicable law.

Where required by law, Qorden will obtain appropriate consent before sending marketing communications. In other circumstances, communications may be sent on the basis of legitimate interests, existing customer relationships, or other lawful grounds recognized by applicable law.

Individuals may opt out of marketing communications at any time by following unsubscribe instructions contained within communications or by contacting Qorden directly.

Opting out of marketing communications will not affect service-related communications necessary for account administration, security notifications, contractual performance, support interactions, billing matters, or compliance obligations.

Qorden does not sell marketing lists or disclose personal data to third parties for independent marketing purposes without an appropriate legal basis.

23. Children’s privacy

Qorden’s Services are primarily intended for use by businesses, organizations, professionals, and individuals who are legally capable of entering into binding agreements under applicable law.

Except where specifically indicated, Qorden does not knowingly collect, solicit, or process personal data from children below the age at which parental consent is required under applicable law.

If Qorden becomes aware that personal data relating to a child has been collected without the necessary authorization, consent, or legal basis, Qorden will take reasonable steps to investigate the matter and, where appropriate, delete the information or otherwise restrict processing.

Parents, guardians, educational institutions, or other responsible parties who believe that a child may have provided personal information to Qorden are encouraged to contact Qorden immediately.

Where Qorden introduces educational, accessibility, family-oriented, or youth-focused features, additional safeguards, disclosures, and consent mechanisms may be implemented to comply with applicable child privacy requirements.

24. Incident response and data breach management

Qorden maintains policies, procedures, and operational controls designed to detect, investigate, respond to, and recover from security incidents and potential personal data breaches.

Security incidents may include unauthorized access, disclosure, loss, destruction, alteration, corruption, misuse, or unavailability of personal data or information systems.

Qorden’s incident response framework includes detection mechanisms, escalation procedures, forensic investigation processes, containment measures, remediation activities, communication protocols, and post-incident reviews.

Where a personal data breach occurs, Qorden will assess the nature, scope, severity, and potential impact of the incident and determine whether notification obligations arise under applicable law, contractual commitments, or regulatory requirements.

Where required, Qorden will notify affected customers, supervisory authorities, regulators, or impacted individuals within applicable legal timeframes.

Qorden continuously reviews and improves its incident response capabilities to address evolving threats and maintain resilience against cyber risks.

25. Law enforcement, regulatory, and legal requests

Qorden may receive requests for information from courts, regulators, law enforcement agencies, governmental authorities, supervisory bodies, or other parties asserting legal authority.

Qorden carefully reviews such requests to assess their validity, scope, legal basis, and consistency with applicable laws.

Where legally permitted, Qorden may seek to limit overly broad requests, challenge inappropriate requests, request clarification, or notify affected customers before disclosure.

Personal data will only be disclosed where Qorden determines that disclosure is legally required, authorized, necessary to protect rights or safety, or otherwise permissible under applicable law.

Nothing in this Privacy Policy shall prevent Qorden from complying with lawful obligations imposed by courts, regulators, governmental authorities, or other competent bodies.

26. Responsible AI and EU AI Act compliance

Qorden is committed to the responsible design, deployment, operation, and governance of artificial intelligence technologies.

Qorden recognizes the importance of transparency, accountability, fairness, human oversight, risk management, privacy protection, security, and ethical considerations in the development and operation of AI systems.

To support these principles, Qorden maintains governance processes that may include:

  • AI risk assessments;
  • Human oversight measures;
  • Security controls;
  • Model testing procedures;
  • Quality assurance processes;
  • Documentation controls;
  • Monitoring and review activities;
  • Regulatory compliance assessments.

Where applicable, Qorden seeks to align its operations with the requirements of the European Union Artificial Intelligence Act (EU AI Act), GDPR, and other emerging AI governance frameworks.

Users should understand that AI systems are probabilistic technologies and may generate inaccurate, incomplete, biased, outdated, or unexpected outputs. Human review remains essential when utilizing AI-generated outputs for important decisions.

Qorden reserves the right to modify, suspend, or discontinue AI features where necessary to maintain compliance, security, reliability, or legal obligations.

27. Business transfers and corporate transactions

As Qorden continues to grow and evolve, certain business transactions may occur, including mergers, acquisitions, investments, restructurings, asset sales, financings, or similar corporate activities.

In connection with such transactions, personal data may be disclosed to professional advisors, auditors, investors, lenders, potential acquirers, or other authorized parties, subject to appropriate confidentiality obligations and security measures.

Where a transaction results in the transfer of personal data to another organization, Qorden will take reasonable steps to ensure that personal information continues to receive an appropriate level of protection consistent with applicable legal requirements.

28. Changes to this Privacy Policy

Qorden may update or modify this Privacy Policy from time to time to reflect changes in legal requirements, regulatory expectations, technological developments, business operations, security practices, AI capabilities, or service offerings.

When material changes are made, Qorden may provide notice through the Services, website announcements, email communications, customer portals, or other appropriate mechanisms.

The “Last Updated” date appearing at the beginning of this Privacy Policy indicates when the document was most recently revised.

Users are encouraged to review this Privacy Policy periodically to remain informed about Qorden’s privacy and data protection practices.

Continued use of the Services following the effective date of an updated Privacy Policy constitutes acknowledgment of the revised Privacy Policy to the extent permitted by law.

29. Contact information

Questions, requests, concerns, complaints, or inquiries relating to privacy, data protection, artificial intelligence governance, security, or regulatory compliance may be directed to:

Qorden AI LTD. | Registered Office: Unit GA-00-SZ-L1-RT-208 Level 1, Gate Avenue South Zone Dubai International Financial Centre (DIFC) Dubai, United Arab Emirates

Email: privacy@qorden.ai

Website: www.qorden.ai

Headquarters

Qorden AI Ltd.

Dubai International Financial Centre (DIFC)

Dubai, United Arab Emirates

Email: legal@qorden.ai

Qorden is committed to responding to inquiries promptly and in accordance with applicable legal and regulatory requirements.

30. Governing law and jurisdiction

This Privacy Policy shall be governed by and construed in accordance with the applicable laws of the United Arab Emirates, including the UAE Personal Data Protection Law (Federal Decree-Law No. 45 of 2021), the Dubai International Financial Centre (DIFC) Data Protection Law No. 5 of 2020 where applicable, and any other relevant laws and regulations governing the processing of Personal Data.

Nothing in this Privacy Policy limits or excludes any statutory rights available to individuals under applicable privacy, data protection, consumer protection, or artificial intelligence laws.

Where disputes arise concerning privacy, the processing of Personal Data, or compliance matters, the Parties shall first seek to resolve the dispute through good-faith negotiations. If the dispute cannot be resolved amicably, it shall be resolved in accordance with the dispute resolution provisions set out in the applicable customer agreement, Terms of Service, or other governing contractual documentation, and, where applicable, the competent courts or arbitration tribunal having jurisdiction in the United Arab Emirates.

Table of Contents

    Effective June 29, 2026

    1. Introduction

    Welcome to Qorden. This Privacy Policy explains how Qorden collects, uses, stores, shares, transfers, protects, and otherwise processes personal data when individuals access, use, purchase, subscribe to, administer, or interact with Qorden’s websites, applications, software platforms, APIs, artificial intelligence technologies, communication services, customer portals, support channels, and related products and services (collectively, the “Services”).

    The Services are provided by Qorden AI LTD. | Registered Office: Unit GA-00-SZ-L1-RT-208 Level 1, Gate Avenue South Zone Dubai International Financial Centre (DIFC) Dubai, United Arab Emirates 

    “Qorden”, “we”, “our”, or “us”).

    Qorden develops and operates advanced artificial intelligence technologies that facilitate multilingual communication, speech recognition, speech-to-speech translation, transcription, meeting intelligence, speech analytics, conversational AI, video dubbing, content localization, and other communication technologies designed to enable seamless collaboration across languages, regions, and industries.

    We recognize that privacy, confidentiality, security, transparency, accountability, and responsible innovation are fundamental to maintaining the trust of our customers, users, partners, and stakeholders. Accordingly, Qorden is committed to processing personal data fairly, lawfully, transparently, and securely while complying with applicable privacy, data protection, cybersecurity, artificial intelligence, consumer protection, and regulatory requirements.

    This Privacy Policy explains the categories of personal data we collect, the purposes for which such information is processed, the legal bases that support our processing activities, how information may be shared or transferred, the safeguards implemented to protect personal data, and the rights available to individuals under applicable laws.

    Qorden may process personal data in a variety of circumstances, including when individuals visit our websites, create accounts, subscribe to services, participate in meetings, utilize translation or transcription services, engage with customer support, access APIs, participate in webinars or events, or otherwise interact with our technology platforms.

    As a global technology organization, Qorden may process information across multiple jurisdictions and through carefully selected infrastructure providers, service providers, affiliates, and authorized personnel. Whenever personal data is transferred, accessed, or processed, Qorden implements appropriate technical, organizational, contractual, and security safeguards designed to ensure compliance with applicable laws and to protect the confidentiality, integrity, and availability of personal data.

    By accessing or using the Services, individuals acknowledge that they have read and understood this Privacy Policy and agree to the processing of personal data as described herein, subject to any rights available under applicable law.

    2. About Qorden

    Qorden is an artificial intelligence company focused on enabling multilingual communication, intelligent collaboration, and advanced speech technologies for organizations and individuals around the world.

    The company develops and operates software platforms, AI services, communication tools, and enterprise technologies that utilize machine learning, natural language processing, speech recognition, speech synthesis, translation engines, large language models, and other artificial intelligence technologies to deliver innovative communication solutions.

    Qorden’s solutions are designed to help organizations overcome language barriers, improve collaboration, enhance customer engagement, automate communication workflows, and derive meaningful insights from voice, text, and communication data.

    The Services offered by Qorden may include:

    • Real-time speech-to-speech translation;
    • Real-time transcription services;
    • Live multilingual captions;
    • Meeting intelligence and analytics;
    • Speech analytics and quality monitoring;
    • Conversational AI and virtual assistants;
    • Customer interaction analytics;
    • AI-generated summaries and action items;
    • Video dubbing and localization technologies;
    • Content translation and language services;
    • Enterprise communication and collaboration platforms.

    Qorden operates internationally through its Irish and United Arab Emirates entities.

    Qorden AI LTD. | Registered Office: Unit GA-00-SZ-L1-RT-208 Level 1, Gate Avenue South Zone Dubai International Financial Centre (DIFC) Dubai, United Arab Emirates

    As part of delivering global services, Qorden may maintain operational, technical, support, compliance, customer success, research, development, administrative, and security functions in multiple jurisdictions. Such activities may be performed by employees, contractors, affiliates, or authorized service providers operating under contractual obligations that require compliance with applicable privacy, confidentiality, and information security requirements.

    Qorden is committed to responsible innovation and seeks to design, develop, deploy, and operate its technologies in a manner that respects privacy, promotes transparency, reduces risk, and supports ethical and accountable use of artificial intelligence. This commitment extends across the entire lifecycle of our products and services, including design, development, deployment, operation, monitoring, maintenance, and continuous improvement.

    3. Applicability and scope

    This Privacy Policy applies to all personal data processed by Qorden in connection with the operation, administration, delivery, support, maintenance, and improvement of the Services.

    The Policy applies to individuals who visit our websites, register for accounts, subscribe to services, participate in meetings or communications processed through the Services, contact our support teams, attend events, interact with marketing communications, utilize APIs, or otherwise engage with Qorden products and technologies.

    This Privacy Policy applies regardless of whether personal data is collected directly from individuals, obtained through enterprise customers, received through authorized integrations, generated through system usage, or provided by trusted third parties acting on behalf of customers or users.

    The Policy applies to information processed through:

    • Websites and web applications;
    • Mobile applications;
    • Desktop applications;
    • Cloud-hosted software platforms;
    • APIs and integrations;
    • Customer administration portals;
    • Artificial intelligence services;
    • Translation and transcription services;
    • Speech analytics platforms;
    • Customer support systems;
    • Marketing and communication channels;
    • Professional services engagements;
    • Training and educational services.

    This Privacy Policy applies to both business-to-business (B2B) and business-to-consumer (B2C) environments unless a separate privacy notice, customer agreement, or contractual arrangement expressly provides otherwise.

    In certain circumstances, Qorden may process personal data solely on behalf of enterprise customers. Where this occurs, the customer generally acts as the Data Controller and Qorden acts as the Data Processor. In such situations, the customer’s own privacy notices, policies, and contractual instructions may govern aspects of the processing activity in addition to the provisions described within this Privacy Policy.

    This Privacy Policy does not apply to third-party websites, products, applications, or services that may be linked to, integrated with, or accessible through the Services. Qorden is not responsible for the privacy practices, content, security practices, or operations of third parties, and users are encouraged to review the privacy notices of those organizations before providing personal information.

    Where applicable law imposes additional requirements or grants additional rights that are not expressly described within this Privacy Policy, Qorden will process personal data in accordance with such legal obligations and rights.

    4. Definitions

    For the purposes of this Privacy Policy, the following terms shall have the meanings set forth below unless the context requires otherwise.

    Personal Data” means any information relating to an identified or identifiable natural person. An identifiable natural person is one who can be identified directly or indirectly through reference to identifiers such as a name, identification number, location data, online identifier, device identifier, or one or more factors specific to the physical, physiological, genetic, mental, economic, cultural, or social identity of that individual.

    Processing” means any operation or set of operations performed on personal data, whether by automated means or otherwise, including collection, recording, organization, structuring, storage, adaptation, retrieval, consultation, use, disclosure, transmission, dissemination, alignment, combination, restriction, erasure, or destruction.

    Data Controller” means the natural or legal person, public authority, agency, or other body that alone or jointly determines the purposes and means of processing personal data.

    Data Processor” means a natural or legal person, public authority, agency, or other body that processes personal data on behalf of a Data Controller.

    Customer Data” means information uploaded, transmitted, generated, stored, shared, or otherwise made available by customers or users through the Services.

    User” means any individual who accesses, uses, administers, interacts with, or participates in the Services.

    AI Systems” means machine learning models, speech recognition engines, language models, translation engines, speech synthesis systems, analytics engines, conversational AI technologies, and other artificial intelligence technologies utilized within the Services.

    Subprocessor” means any third-party service provider engaged by Qorden to process personal data on its behalf in connection with the provision of the Services.

    Applicable Data Protection Laws” means all laws, regulations, and legal requirements governing the collection, use, storage, transfer, disclosure, protection, and processing of personal data, including where applicable the GDPR, UK GDPR, Irish Data Protection Act 2018, DIFC Data Protection Law No. 5 of 2020, and other applicable privacy laws.

    Services” means all products, applications, websites, software platforms, APIs, communication technologies, artificial intelligence services, support services, and related offerings provided by Qorden.

    These definitions are intended to support consistency, clarity, and transparency throughout this Privacy Policy and shall be interpreted broadly where necessary to achieve the objectives of applicable privacy and data protection legislation.

    5. Data controller and data processor roles

    Qorden’s role in relation to personal data depends upon the nature of the Services being provided and the relationship between Qorden, its customers, and end users.

    In certain circumstances, Qorden acts as a Data Controller because it determines the purposes for which personal data is collected and the manner in which that information is processed. Examples include the administration of customer accounts, operation of the Qorden website, management of subscriptions, marketing communications, recruitment activities, vendor management, and the administration of customer relationships.

    In other circumstances, particularly where enterprise customers use the Services to process information relating to their employees, customers, contractors, or business contacts, Qorden acts as a Data Processor. In these situations, the customer determines the purposes and means of processing while Qorden processes personal data solely in accordance with the customer’s documented instructions and applicable contractual obligations.

    Where Qorden acts as a Data Processor, customers remain responsible for ensuring that they have an appropriate legal basis for processing personal data and for providing any notices, disclosures, or consents required by applicable law.

    Qorden may also support customers through Data Processing Agreements (“DPAs”), Standard Contractual Clauses, security documentation, compliance questionnaires, and other mechanisms intended to facilitate compliance with applicable privacy requirements.

    In limited circumstances, Qorden and a customer may act as independent controllers or joint controllers in relation to specific processing activities. Where this occurs, responsibilities will generally be governed by the applicable contractual arrangements between the parties.

    Regardless of whether Qorden acts as a Controller or Processor, Qorden implements technical, organizational, and contractual safeguards designed to protect personal data and support compliance with applicable legal requirements.

    6. Categories of personal data we collect

    The categories of personal data processed by Qorden vary depending upon the Services utilized, the relationship between Qorden and the individual, the customer’s configuration of the Services, and the context in which information is collected.

    Qorden may collect and process identity information, including names, usernames, employee identifiers, job titles, company affiliations, profile photographs, and other information used to identify users and administrators within the Services.

    Qorden may collect contact information such as business email addresses, telephone numbers, physical addresses, billing addresses, and other communication details required to establish and maintain customer relationships.

    Account-related information may include authentication credentials, account preferences, user permissions, subscription details, licensing information, support records, and activity history associated with the use of the Services.

    When users participate in meetings, calls, conferences, webinars, training sessions, or other communications processed through the Services, Qorden may process communications data. Such information may include voice recordings, audio streams, video streams, meeting transcripts, captions, translations, summaries, chat messages, shared content, participant information, and collaboration records.

    Qorden may collect technical and operational information automatically through the use of the Services. This may include IP addresses, browser information, operating system information, application versions, device identifiers, network information, session information, diagnostic logs, performance metrics, and security events.

    Financial and transaction-related information may also be processed, including billing records, payment status information, subscription histories, tax information, invoices, and related commercial records. Payment card information is typically processed directly by authorized payment providers and is generally not stored by Qorden.

    Qorden seeks to limit the collection of personal data to that which is relevant, necessary, and proportionate to the purposes described within this Privacy Policy.

    7. Sources of personal data

    Qorden obtains personal data from a variety of sources depending upon how individuals interact with the Services.

    Information may be collected directly from individuals when they create accounts, subscribe to services, register for events, submit inquiries, request demonstrations, contact support teams, participate in surveys, or otherwise communicate with Qorden.

    Enterprise customers may provide information relating to employees, contractors, customers, meeting participants, agents, or other authorized users who access or interact with the Services. In such cases, the customer is generally responsible for ensuring that appropriate notices and legal bases are in place.

    Qorden may also receive information through integrations with third-party systems, including identity providers, collaboration platforms, communication platforms, customer relationship management systems, contact center technologies, and business productivity tools.

    Certain information is automatically generated through the operation of the Services. This includes system logs, security logs, device information, usage statistics, performance metrics, diagnostic information, and other technical records necessary for operating, securing, and improving the Services.

    In some cases, Qorden may receive information from publicly available sources, business partners, service providers, event organizers, or referral programs where such collection is permitted by law.

    Qorden takes reasonable steps to ensure that personal data obtained from third parties is collected and processed in accordance with applicable legal requirements.

    8. Purposes of processing

    Qorden processes personal data for a variety of legitimate business, operational, security, contractual, and regulatory purposes.

    The primary purpose of processing is to provide and operate the Services. This includes enabling multilingual communication, delivering speech-to-speech translation, generating transcriptions, producing captions, facilitating collaboration, generating meeting summaries, supporting speech analytics, and providing AI-powered functionality.

    Personal data is also processed to create and manage customer accounts, authenticate users, administer subscriptions, provide customer support, respond to inquiries, deliver service notifications, and maintain customer relationships.

    Qorden processes information to maintain the security, availability, and integrity of its platforms. This includes monitoring systems, detecting suspicious activities, preventing unauthorized access, investigating incidents, managing vulnerabilities, enforcing policies, and protecting customers, users, and infrastructure.

    Qorden may process personal data to improve products and services. Such activities may include analyzing system performance, identifying usability issues, evaluating feature effectiveness, improving translation quality, enhancing speech recognition accuracy, developing new functionality, and conducting internal research and development activities.

    Information may also be processed to comply with legal obligations, regulatory requirements, contractual commitments, court orders, governmental requests, tax obligations, and industry standards.

    Where permitted by law, Qorden may use personal data to communicate information regarding products, services, updates, events, webinars, research publications, and other business-related information that may be of interest to customers and users.

    Qorden endeavors to ensure that all processing activities are proportionate, necessary, and aligned with clearly defined business and legal objectives.

    9. Legal bases for processing

    Qorden processes personal data only where a lawful basis exists under applicable data protection laws.

    One of the primary legal bases relied upon by Qorden is contractual necessity. Personal data may be processed where such processing is necessary to enter into, perform, administer, or enforce a contract with an individual or customer. This includes providing access to the Services, administering accounts, delivering support, managing subscriptions, and fulfilling contractual obligations.

    Qorden may also process personal data on the basis of legitimate interests. These interests include operating and improving the Services, securing systems, preventing fraud, protecting intellectual property, conducting business operations, supporting customer relationships, and ensuring the continued reliability of the Services. Where legitimate interests are relied upon, Qorden seeks to balance its interests against the rights and freedoms of affected individuals.

    Certain processing activities may be based on consent. Examples include marketing communications, optional cookies, participation in promotional activities, voice cloning services, or other activities where consent is required by law. Individuals may withdraw consent at any time, although withdrawal will not affect the lawfulness of processing conducted before such withdrawal.

    Qorden may process personal data where necessary to comply with legal obligations. Such obligations may arise under tax laws, financial reporting requirements, data protection regulations, court orders, regulatory investigations, and other legal requirements applicable to Qorden’s operations.

    In limited circumstances, processing may be necessary to protect vital interests, exercise legal rights, defend legal claims, or support matters of substantial public interest where recognized by applicable law.

    10. Special category data, biometric data, and sensitive information

    Certain Qorden Services involve the processing of audio, speech, and communication content. Depending upon how the Services are used, this information may contain personal data that is considered sensitive or subject to enhanced protection under applicable law.

    Voice recordings may contain information relating to an individual’s identity, language, nationality, health information, accessibility needs, personal opinions, professional discussions, or other information disclosed during communications. In some jurisdictions, certain voice characteristics may also be considered biometric information where they are processed for identification purposes.

    Qorden does not intentionally collect sensitive personal data unless such processing is necessary to provide the Services, required by customers, voluntarily provided by users, or otherwise permitted by law. Where processing of special category data is required, Qorden implements additional safeguards designed to protect such information.

    Access to sensitive information is restricted to authorized personnel with a legitimate business need. Additional security controls, monitoring measures, encryption technologies, and contractual safeguards may be applied where appropriate.

    Qorden does not use voice recordings or speech data for surveillance purposes, behavioral profiling, or identity verification activities unless expressly disclosed, contractually authorized, and legally permissible.

    Enterprise customers utilizing recording, transcription, translation, speech analytics, or related Services remain responsible for ensuring that they have obtained any necessary consents, notices, permissions, or legal bases required under applicable laws governing communications and recordings.

    Qorden encourages customers and users to avoid unnecessarily disclosing sensitive personal information unless such disclosure is required for legitimate business purposes and supported by an appropriate legal basis.

    11. Artificial intelligence processing and transparency

    Artificial intelligence technologies form a core component of the Services provided by Qorden. These technologies are designed to assist users in communication, translation, transcription, analytics, collaboration, content generation, and related activities.

    Qorden utilizes a combination of proprietary technologies, third-party artificial intelligence services, machine learning models, natural language processing systems, speech recognition engines, speech synthesis technologies, translation engines, large language models, and analytical systems to provide the functionality available through the Services.

    Depending on the specific service utilized, artificial intelligence systems may process spoken language, written text, meeting content, communication metadata, customer-provided information, user instructions, and other information necessary to generate requested outputs.

    Examples of AI-powered functionality may include:

    • Speech-to-text transcription;
    • Real-time translation;
    • Speech-to-speech communication;
    • AI-generated summaries;
    • Action item extraction;
    • Conversation analysis;
    • Sentiment analysis;
    • Knowledge retrieval;
    • Speech analytics;
    • Language identification;
    • Accent adaptation;
    • Video dubbing;
    • Automated quality monitoring;
    • AI-powered assistance features.

    Qorden is committed to providing transparency regarding the use of artificial intelligence within its Services. Users should understand that AI systems operate by identifying patterns, making predictions, generating outputs, and processing information through statistical and computational methods.

    While Qorden continuously works to improve the accuracy and reliability of its AI systems, artificial intelligence outputs may occasionally contain inaccuracies, omissions, mistranslations, incomplete information, or unintended results. AI-generated outputs should therefore be reviewed by appropriately qualified individuals before being relied upon for legal, financial, regulatory, employment, medical, compliance, or other high-impact decisions.

    Qorden does not guarantee that AI-generated outputs will always be accurate, complete, or suitable for any particular purpose.

    12. Real-time translation, transcription, and speech processing

    Certain Services involve the real-time processing of voice, audio, video, text, and communication content in order to facilitate multilingual communication and collaboration.

    When users participate in meetings, calls, conferences, webinars, or other communications processed through the Services, Qorden may analyze spoken language to generate transcriptions, captions, translations, summaries, analytics, and related outputs.

    Processing activities may include:

    • Capturing audio streams;
    • Speech recognition;
    • Language detection;
    • Translation processing;
    • Speech synthesis;
    • Speaker segmentation;
    • Transcription generation;
    • Caption generation;
    • Meeting intelligence processing;
    • Quality analysis.

    Such processing is performed solely for the purposes of providing the requested Services, improving user experience, supporting customer requirements, and maintaining service functionality.

    Customers utilizing recording, transcription, translation, or analytics features remain responsible for ensuring that all required notices, disclosures, permissions, and legal bases are obtained before communications are recorded or processed.

    Qorden does not monitor customer communications for independent business purposes and processes communication content only as necessary to provide the Services and comply with legal obligations.

    13. Automated decision-making and human oversight

    Qorden believes that meaningful human oversight remains an important component of responsible artificial intelligence deployment.

    As a general principle, Qorden does not make decisions that produce legal effects or similarly significant effects on individuals solely through fully automated processing without appropriate safeguards.

    Where AI-generated outputs are provided through the Services, such outputs are intended to support human decision-making rather than replace human judgment.

    Customers and users remain responsible for reviewing AI-generated outputs before relying upon them in business, legal, financial, employment, compliance, healthcare, or regulatory contexts.

    Qorden maintains governance processes designed to support transparency, accountability, monitoring, and oversight of AI-enabled systems. These measures may include testing procedures, quality assurance reviews, model performance monitoring, risk assessments, human review mechanisms, and continuous improvement activities.

    Where applicable law grants individuals rights relating to automated decision-making, Qorden will facilitate the exercise of those rights in accordance with legal requirements.

    14. Data sharing and disclosure

    Qorden may share personal data with carefully selected third parties where necessary to provide the Services, operate its business, comply with legal obligations, or protect legitimate interests.

    Personal data may be disclosed to:

    • Cloud infrastructure providers;
    • Hosting providers;
    • Payment processors;
    • Customer support providers;
    • Identity and authentication providers;
    • Security service providers;
    • Analytics providers;
    • Professional advisors;
    • Auditors;
    • Legal counsel;
    • Regulatory authorities;
    • Government agencies where required by law.

    All third parties processing personal data on behalf of Qorden are subject to contractual obligations designed to protect personal data and ensure compliance with applicable privacy requirements.

    Qorden does not sell personal data.

    Qorden does not rent personal data.

    Qorden does not disclose personal data to third parties for independent marketing purposes without an appropriate legal basis.

    15. Subprocessors and service providers

    To provide secure, reliable, and scalable services, Qorden may engage subprocessors and service providers that assist with hosting, infrastructure, communications, security, analytics, billing, support, monitoring, and related operational functions.

    Subprocessors may process personal data only for purposes authorized by Qorden and subject to contractual obligations that require:

    • Confidentiality;
    • Information security controls;
    • Data protection compliance;
    • Incident reporting;
    • Access restrictions;
    • Audit cooperation;
    • Appropriate transfer safeguards.

    Qorden conducts reasonable due diligence before engaging subprocessors and periodically reviews the security and compliance posture of service providers that process personal data.

    A current list or categories of subprocessors may be made available upon request or through customer agreements where applicable.

    16. International data transfers

    Qorden operates globally and may transfer Personal Data across national borders where necessary to provide the Services, maintain its infrastructure, and support its customers.

    Personal Data may be processed within:

    • United Arab Emirates;
    • Other countries where Qorden, its affiliates, cloud service providers, subprocessors, or authorized service providers operate.

    Where Personal Data is transferred outside the United Arab Emirates, Qorden implements appropriate contractual, technical, and organizational safeguards to ensure that Personal Data continues to receive a level of protection consistent with applicable UAE data protection laws and regulatory requirements.

    Such safeguards may include:

    • Data Processing Agreements;
    • Contractual obligations with service providers and subprocessors;
    • Appropriate technical and organizational security measures;
    • Encryption and secure transmission of Personal Data;
    • Access controls and information security measures aligned with recognized industry standards.

    Qorden periodically reviews its international data transfer practices and updates its safeguards as necessary to comply with applicable laws, regulatory requirements, and evolving best practices.

    17. Information security and technical safeguards

    Protecting personal data is a fundamental component of Qorden’s operational and governance framework.

    Qorden maintains administrative, technical, physical, and organizational safeguards designed to protect personal data against accidental loss, unauthorized access, disclosure, alteration, misuse, or destruction.

    Examples of security measures include:

    • Encryption in transit;
    • Encryption at rest where appropriate;
    • Role-based access controls;
    • Multi-factor authentication;
    • Security monitoring;
    • Network segmentation;
    • Vulnerability management;
    • Penetration testing;
    • Security awareness training;
    • Incident response procedures;
    • Vendor risk assessments;
    • Secure software development practices.

    Access to personal data is limited to authorized personnel whose responsibilities require such access.

    Although no security system can guarantee absolute protection, Qorden continually reviews and improves its security practices to address evolving threats and industry expectations.

    18. Data retention

    Qorden retains personal data only for as long as necessary to fulfill the purposes for which it was collected, comply with legal obligations, resolve disputes, enforce agreements, protect legal rights, and maintain business records.

    Retention periods vary depending upon the nature of the information, the services utilized, contractual commitments, customer instructions, regulatory obligations, and operational requirements.

    Examples may include:

    • Account information;
    • Billing records;
    • Security logs;
    • Support records;
    • Customer communications;
    • Meeting metadata;
    • Audio recordings;
    • AI-generated outputs.

    Where customers control retention settings, Qorden generally follows customer-configured retention periods subject to legal and contractual obligations.

    Upon expiration of applicable retention periods, personal data may be securely deleted, anonymized, aggregated, or otherwise rendered incapable of identifying individuals.

    19. Data subject rights

    Depending upon applicable law, individuals may have certain rights regarding their personal data.

    Such rights may include:

    • Right of access;
    • Right to rectification;
    • Right to erasure;
    • Right to restriction of processing;
    • Right to data portability;
    • Right to object;
    • Right to withdraw consent;
    • Rights relating to automated decision-making;
    • Right to lodge complaints with supervisory authorities.

    Qorden is committed to responding to privacy rights requests in accordance with applicable legal requirements and regulatory timelines.

    Where Qorden acts solely as a Data Processor, requests may be referred to the relevant customer for handling under the customer’s instructions.

    Qorden may request information necessary to verify an individual’s identity before fulfilling a request.

    20. Exercising your rights and complaints

    Individuals wishing to exercise privacy rights, submit complaints, request information, or raise concerns regarding the processing of personal data may contact Qorden using the contact details provided in this Privacy Policy.

    Privacy requests should include sufficient information to enable Qorden to identify the requester, understand the nature of the request, and verify identity where necessary.

    Qorden will review all requests fairly, objectively, and in accordance with applicable legal requirements.

    Where an individual believes that Qorden has not adequately addressed a privacy concern, the individual may have the right to lodge a complaint with a competent supervisory authority, including the Irish Data Protection Commission, the DIFC Commissioner of Data Protection, or another authority having jurisdiction over the matter.

    Qorden is committed to working constructively with individuals and regulators to resolve privacy concerns and continuously improve its privacy and data protection practices.

    21. Cookies and similar technologies

    Qorden uses cookies, pixels, local storage objects, web beacons, SDKs, and similar technologies to support the operation, security, functionality, and performance of its Services.

    Cookies are small text files placed on a user’s device that allow websites and applications to recognize devices, remember preferences, maintain sessions, improve functionality, and collect information regarding how Services are used.

    Qorden uses strictly necessary cookies required for authentication, security, session management, fraud prevention, and essential platform functionality. These technologies enable users to access secure areas of the Services, maintain active sessions, and utilize features that would otherwise be unavailable.

    Qorden may also utilize performance, analytics, functional, and preference-related technologies that help us understand how users interact with the Services, identify areas for improvement, measure platform performance, and improve overall user experience.

    Where required by applicable law, non-essential cookies and tracking technologies will only be deployed following the user’s consent through an appropriate consent management mechanism.

    Users may manage cookie preferences through browser settings, consent management tools, or platform-specific privacy settings. Disabling certain technologies may impact the functionality and performance of some Services.

    Additional information regarding the use of cookies and tracking technologies may be provided in a separate Cookie Policy published by Qorden.

    22. Marketing communications

    Qorden may communicate with existing customers, prospective customers, partners, event attendees, and other individuals regarding products, services, updates, events, webinars, educational content, industry developments, and other business-related matters.

    Marketing communications may be delivered through email, telephone, messaging platforms, social media channels, webinars, newsletters, or other communication methods permitted by applicable law.

    Where required by law, Qorden will obtain appropriate consent before sending marketing communications. In other circumstances, communications may be sent on the basis of legitimate interests, existing customer relationships, or other lawful grounds recognized by applicable law.

    Individuals may opt out of marketing communications at any time by following unsubscribe instructions contained within communications or by contacting Qorden directly.

    Opting out of marketing communications will not affect service-related communications necessary for account administration, security notifications, contractual performance, support interactions, billing matters, or compliance obligations.

    Qorden does not sell marketing lists or disclose personal data to third parties for independent marketing purposes without an appropriate legal basis.

    23. Children’s privacy

    Qorden’s Services are primarily intended for use by businesses, organizations, professionals, and individuals who are legally capable of entering into binding agreements under applicable law.

    Except where specifically indicated, Qorden does not knowingly collect, solicit, or process personal data from children below the age at which parental consent is required under applicable law.

    If Qorden becomes aware that personal data relating to a child has been collected without the necessary authorization, consent, or legal basis, Qorden will take reasonable steps to investigate the matter and, where appropriate, delete the information or otherwise restrict processing.

    Parents, guardians, educational institutions, or other responsible parties who believe that a child may have provided personal information to Qorden are encouraged to contact Qorden immediately.

    Where Qorden introduces educational, accessibility, family-oriented, or youth-focused features, additional safeguards, disclosures, and consent mechanisms may be implemented to comply with applicable child privacy requirements.

    24. Incident response and data breach management

    Qorden maintains policies, procedures, and operational controls designed to detect, investigate, respond to, and recover from security incidents and potential personal data breaches.

    Security incidents may include unauthorized access, disclosure, loss, destruction, alteration, corruption, misuse, or unavailability of personal data or information systems.

    Qorden’s incident response framework includes detection mechanisms, escalation procedures, forensic investigation processes, containment measures, remediation activities, communication protocols, and post-incident reviews.

    Where a personal data breach occurs, Qorden will assess the nature, scope, severity, and potential impact of the incident and determine whether notification obligations arise under applicable law, contractual commitments, or regulatory requirements.

    Where required, Qorden will notify affected customers, supervisory authorities, regulators, or impacted individuals within applicable legal timeframes.

    Qorden continuously reviews and improves its incident response capabilities to address evolving threats and maintain resilience against cyber risks.

    25. Law enforcement, regulatory, and legal requests

    Qorden may receive requests for information from courts, regulators, law enforcement agencies, governmental authorities, supervisory bodies, or other parties asserting legal authority.

    Qorden carefully reviews such requests to assess their validity, scope, legal basis, and consistency with applicable laws.

    Where legally permitted, Qorden may seek to limit overly broad requests, challenge inappropriate requests, request clarification, or notify affected customers before disclosure.

    Personal data will only be disclosed where Qorden determines that disclosure is legally required, authorized, necessary to protect rights or safety, or otherwise permissible under applicable law.

    Nothing in this Privacy Policy shall prevent Qorden from complying with lawful obligations imposed by courts, regulators, governmental authorities, or other competent bodies.

    26. Responsible AI and EU AI Act compliance

    Qorden is committed to the responsible design, deployment, operation, and governance of artificial intelligence technologies.

    Qorden recognizes the importance of transparency, accountability, fairness, human oversight, risk management, privacy protection, security, and ethical considerations in the development and operation of AI systems.

    To support these principles, Qorden maintains governance processes that may include:

    • AI risk assessments;
    • Human oversight measures;
    • Security controls;
    • Model testing procedures;
    • Quality assurance processes;
    • Documentation controls;
    • Monitoring and review activities;
    • Regulatory compliance assessments.

    Where applicable, Qorden seeks to align its operations with the requirements of the European Union Artificial Intelligence Act (EU AI Act), GDPR, and other emerging AI governance frameworks.

    Users should understand that AI systems are probabilistic technologies and may generate inaccurate, incomplete, biased, outdated, or unexpected outputs. Human review remains essential when utilizing AI-generated outputs for important decisions.

    Qorden reserves the right to modify, suspend, or discontinue AI features where necessary to maintain compliance, security, reliability, or legal obligations.

    27. Business transfers and corporate transactions

    As Qorden continues to grow and evolve, certain business transactions may occur, including mergers, acquisitions, investments, restructurings, asset sales, financings, or similar corporate activities.

    In connection with such transactions, personal data may be disclosed to professional advisors, auditors, investors, lenders, potential acquirers, or other authorized parties, subject to appropriate confidentiality obligations and security measures.

    Where a transaction results in the transfer of personal data to another organization, Qorden will take reasonable steps to ensure that personal information continues to receive an appropriate level of protection consistent with applicable legal requirements.

    28. Changes to this Privacy Policy

    Qorden may update or modify this Privacy Policy from time to time to reflect changes in legal requirements, regulatory expectations, technological developments, business operations, security practices, AI capabilities, or service offerings.

    When material changes are made, Qorden may provide notice through the Services, website announcements, email communications, customer portals, or other appropriate mechanisms.

    The “Last Updated” date appearing at the beginning of this Privacy Policy indicates when the document was most recently revised.

    Users are encouraged to review this Privacy Policy periodically to remain informed about Qorden’s privacy and data protection practices.

    Continued use of the Services following the effective date of an updated Privacy Policy constitutes acknowledgment of the revised Privacy Policy to the extent permitted by law.

    29. Contact information

    Questions, requests, concerns, complaints, or inquiries relating to privacy, data protection, artificial intelligence governance, security, or regulatory compliance may be directed to:

    Qorden AI LTD. | Registered Office: Unit GA-00-SZ-L1-RT-208 Level 1, Gate Avenue South Zone Dubai International Financial Centre (DIFC) Dubai, United Arab Emirates

    Email: privacy@qorden.ai

    Website: www.qorden.ai

    Headquarters

    Qorden AI Ltd.

    Dubai International Financial Centre (DIFC)

    Dubai, United Arab Emirates

    Email: legal@qorden.ai

    Qorden is committed to responding to inquiries promptly and in accordance with applicable legal and regulatory requirements.

    30. Governing law and jurisdiction

    This Privacy Policy shall be governed by and construed in accordance with the applicable laws of the United Arab Emirates, including the UAE Personal Data Protection Law (Federal Decree-Law No. 45 of 2021), the Dubai International Financial Centre (DIFC) Data Protection Law No. 5 of 2020 where applicable, and any other relevant laws and regulations governing the processing of Personal Data.

    Nothing in this Privacy Policy limits or excludes any statutory rights available to individuals under applicable privacy, data protection, consumer protection, or artificial intelligence laws.

    Where disputes arise concerning privacy, the processing of Personal Data, or compliance matters, the Parties shall first seek to resolve the dispute through good-faith negotiations. If the dispute cannot be resolved amicably, it shall be resolved in accordance with the dispute resolution provisions set out in the applicable customer agreement, Terms of Service, or other governing contractual documentation, and, where applicable, the competent courts or arbitration tribunal having jurisdiction in the United Arab Emirates.

    Table of Contents

      Effective June 29, 2026

      1. Introduction

      Your privacy and trust are of utmost importance to us. Dubbix is a platform operated and owned by Qorden AI Ltd., a leading provider of advanced AI-driven solutions. This Privacy Policy reflects Qorden AI Ltd.’s commitment to protecting user data and complying with applicable data protection laws, including those of the Dubai Courts. This document outlines how we collect, use, disclose, and protect your personal data.

      Dubbix is dedicated to safeguarding the personal information of its users, ensuring that our data processing practices are transparent, fair, and in accordance with applicable laws. This Privacy Policy applies to all users of Dubbix’s services, including our website, mobile applications, and other related services (collectively, the “Services”).

      2. The Purpose of this Privacy Policy

      This Privacy Policy aims to:

      • Explain what personal and sensitive data we collect and why.
      • Describe how we process, store, and safeguard your data.
      • Inform you of your rights under the Dubai Courts Data Protection Law and how you can exercise them.
      • Clarify how we share data with trusted third parties and our compliance with international data transfer requirements.

      3. Scope of the Privacy Policy

      This Privacy Policy applies to all personal data processed by Dubbix in connection with our Services, whether accessed via our website, mobile applications, or other platforms.

      By using Dubbix’s Services, you acknowledge that you have read and understood this Privacy Policy. If you do not agree with the terms outlined herein, please discontinue your use of the Services.

      For any questions or concerns about this Privacy Policy or your personal data, please contact us at:
      contact@dubbix.com

      4. Data Collection and Usage

      To provide you with the best possible experience and ensure that our Services operate effectively, Dubbix collects and processes certain personal data. Below are the types of data we collect, the purposes for which we collect it, and how it is used in compliance with the Dubai Courts Data Protection Law No. 5 of 2020.

      5. Types of Data Collected

      • Personal Data

        We may collect the following personal information from you:

        • Name and contact information (e.g., email address, phone number, physical address).
        • Payment information (e.g., credit card details, billing address) for subscription and transactional purposes.
        • Account information (e.g., username, profile details).
      • Sensitive Personal Data

        In specific cases, such as voice transformation or dubbing services, we may process sensitive personal data, including biometric data (e.g., voice recordings). Such processing is performed with your explicit consent and in compliance with Dubai Courts regulations.

      • Usage Data

        We collect information about how you interact with our Services, including:

        • Device information (e.g., IP address, browser type, operating system).
        • Log data (e.g., pages visited, session duration, and features used).
        • Location data (where consented and applicable).
      • Technical Data

        Information related to system performance, app errors, and diagnostic data may be collected to maintain and improve our Services.

      6. Purpose of Data Collection

      We process your data for the following purposes:

      • Providing and Improving Services
        • To operate and deliver core functionalities, such as multilingual video dubbing, speech-to-speech conversion, and accent adjustments.
        • To personalize and enhance your experience based on your preferences.
      • Subscription and Payment Processing
        • To manage your subscriptions, process payments, and handle billing inquiries.
      • Communication
        • To send service-related notifications, updates, or alerts.
        • To respond to your inquiries and provide customer support.
      • Compliance and Legal Obligations
        • To comply with applicable laws, including Dubai Courts data protection regulations.
        • To detect, prevent, and address fraudulent or unlawful activities.
      • Marketing and Promotions
        With your explicit consent, we may use your data to send promotional materials or information about new features, services, or offers.
      • Service Analytics and Improvement
        • To analyze usage trends and improve the functionality, performance, and reliability of our Services.

      7. How We Use Your Data

      All personal data is processed in a manner consistent with the purposes stated above. We ensure that data usage is:

      • Transparent: You are informed about how your data is being used.
      • Purposeful: Your data is only used for the purposes it was collected for.
      • Secure: We apply robust security measures to protect your data from unauthorized access.

      8. Legal Basis for Processing

      Dubbix processes your personal data in strict compliance with the Dubai Courts Data Protection Law No. 5 of 2020. The legal basis for processing your personal data depends on the specific purpose for which the data is collected and processed. Below are the lawful grounds on which we rely to process your data.

      9. Consent

      We process your personal data with your explicit consent in the following cases:

      • When you provide biometric data (e.g., voice recordings) for voice transformation or dubbing purposes.
      • When you subscribe to receive marketing communications or promotional materials.
      • When cookies or similar tracking technologies require your consent under applicable laws.

      You have the right to withdraw your consent at any time. Withdrawal of consent will not affect the lawfulness of processing based on consent before its withdrawal.

      10. Contractual Necessity

      We process your personal data when it is necessary to perform a contract to which you are a party, or to take steps at your request before entering into such a contract. Examples include:

      • Managing your subscription and providing access to our services.
      • Processing payments and handling billing-related inquiries.
      • Delivering services such as speech-to-speech conversion, video dubbing, and accent adjustments.

      11. Legal Obligation

      We process personal data where it is necessary for compliance with a legal obligation to which Dubbix is subject. For example:

      • Complying with Dubai Courts regulations, including obligations related to data retention, user rights, and reporting obligations.
      • Responding to lawful requests from authorities or courts in compliance with applicable laws.

      12. Legitimate Interests

      We may process your personal data to pursue our legitimate business interests, provided that such processing does not override your fundamental rights and freedoms. These legitimate interests include:

      • Improving our Services by analyzing usage trends and technical data.
      • Ensuring the security of our platform and protecting against fraud or misuse.
      • Communicating with users regarding non-promotional service updates and important notices.
      • Conducting research and development to enhance user experience and product offerings.

      If you object to processing based on legitimate interests, you can exercise your right to do so as outlined in the “User Rights” section of this Privacy Policy.

      13. Vital Interests

      In rare instances, we may process your personal data where it is necessary to protect your vital interests or those of another person. For example, this could apply in emergency scenarios where the processing of data is essential for safety or well-being.

      14. Public Interest or Official Authority

      If required, Dubbix may process personal data for tasks carried out in the public interest or in the exercise of official authority vested in us. This is generally applicable only in cases mandated by law and subject to strict compliance requirements.

      Dubbix ensures that all processing activities are aligned with one or more of the above legal bases.

      15. Data Hosting and International Access

      Your personal data is securely hosted on servers located within the United Kingdom and Ireland. These jurisdictions are recognized as providing an adequate level of data protection under Article 26 of the Dubai International Financial Centre (DIFC) Data Protection Law No. 5 of 2020, and are also considered adequate under the General Data Protection Regulation (GDPR).

      Access to these systems is restricted to authorized personnel and conducted via secure, encrypted channels. This includes access by team members based in the United Arab Emirates, who access the data solely for operational and support purposes. At this time, no personal data is processed in jurisdictions that are not considered adequate under DIFC, GDPR, or other applicable data protection regulations.

      Should we expand our processing activities to countries outside these recognized jurisdictions, we will ensure that such transfers are conducted in full compliance with applicable laws.

      16. Data Processing Activities

      We process your personal data for the following purposes as part of our service delivery:

      • Service Operations
        • Providing speech-to-speech conversion, multilingual dubbing, and accent adjustment services.
        • Managing your account, subscriptions, and preferences.
      • Data Storage and Analysis
        • Storing data securely on our servers for efficient service operation.
        • Analyzing usage patterns to optimize our platform and improve user experience.
      • Automated Processing
        • Utilizing AI algorithms to process voice data, ensuring high-quality outputs for dubbing and translation services.
        • Automated tools for real-time speech-to-speech conversions and accent adjustments.
      • Security and Compliance
        • Monitoring activities for fraudulent behavior or misuse of our services.
        • Ensuring compliance with Dubai Courts regulations and other applicable laws.
      • Customer Support
        • Using data to resolve technical issues or respond to user inquiries.

      17. Data Sharing with Third Parties

      We may share your data with third-party service providers or processors under strict agreements that ensure compliance with Dubai Courts data protection laws. These include:

      • Cloud Hosting Providers
        For secure data storage and server hosting.
      • Payment Processors
        To facilitate transactions and manage subscriptions.
      • Analytics Services
        To analyze and optimize platform performance.
      • Support and Maintenance Teams
        For troubleshooting and improving service delivery.

      All third-party processors are required to adhere to data protection standards as mandated by Dubai Courts laws, including safeguarding user data and maintaining confidentiality.

      18. International Data Transfers

      To ensure seamless service delivery, your personal data may be transferred and processed in jurisdictions outside the Dubai Courts. In such cases, Dubbix complies with strict Dubai Courts regulations governing international data transfers, including:

      • Adequate Safeguards
        Ensuring that recipient countries or organizations provide an adequate level of data protection equivalent to Dubai Courts standards.
      • Standard Contractual Clauses (SCCs)
        Implementing contractual clauses approved by Dubai Courts authorities to regulate cross-border data transfers.
      • Explicit Consent
        Obtaining your consent for transfers to jurisdictions that may not provide equivalent data protection, where required.
      • Binding Corporate Rules
        Where applicable, relying on internal policies governing data transfers within the organization.

      19. Data Localization and Access Control

      To further safeguard your data:

      • Where possible, data is stored within the UAE or regions that comply with Dubai Courts regulations.
      • Access to data is strictly controlled and limited to authorized personnel or trusted service providers on a need-to-know basis.

      20. Your Rights in International Transfers

      Users retain the right to:

      • Receive Information
        Be informed of any international data transfers and associated safeguards.
      • Object to Transfers
        Raise objections to transfers in specific cases by contacting us.

      21. User Rights

      As a user of Dubbix’s services, you have specific rights concerning your personal data under the Dubai Courts Data Protection Law No. 5 of 2020. We are committed to ensuring that you can exercise these rights easily and transparently.

      22. Right to Access

      You have the right to request:

      • Confirmation on whether we process your personal data.
      • A copy of the personal data we hold about you.
      • Information about how we process your data, including the purposes, categories of data processed, and any recipients of your data.

      23. Right to Rectification

      You have the right to request that we correct inaccurate or incomplete personal data about you. If you believe the information we hold is outdated or incorrect, please contact us to have it updated.

      24. Right to Erasure (Right to be Forgotten)

      You can request that we delete your personal data in the following situations:

      • The data is no longer needed for the purposes for which it was collected.
      • You withdraw your consent, and there is no other legal basis for processing.
      • You object to processing, and there are no overriding legitimate grounds.
      • The data has been unlawfully processed.
      • Erasure is required to comply with a legal obligation.

      We may retain data where required by law or for the establishment, exercise, or defense of legal claims.

      25. Right to Restrict Processing

      You may request a restriction on the processing of your personal data in the following circumstances:

      • You contest the accuracy of the data, allowing us time to verify its correctness.
      • The processing is unlawful, and you oppose erasure, requesting restriction instead.
      • We no longer need the data, but you require it to establish, exercise, or defend legal claims.
      • You have objected to processing, pending verification of our legitimate interests.

      26. Right to Data Portability

      You have the right to:

      • Receive your personal data in a structured, commonly used, and machine-readable format.
      • Request that we transmit your data directly to another controller, where technically feasible.

      27. Right to Object

      You can object to the processing of your personal data in the following cases:

      • Where processing is based on legitimate interests or performed in the public interest.
      • For direct marketing purposes, including profiling related to marketing.

      If you object, we will cease processing unless we demonstrate compelling legitimate grounds or need the data for legal claims.

      28. Right to Withdraw Consent

      If we process your personal data based on your consent, you have the right to withdraw it at any time. Withdrawal of consent will not affect the lawfulness of processing conducted before its withdrawal.

      29. Right to Lodge a Complaint

      If you believe we have not adequately addressed your concerns regarding your personal data, you have the right to lodge a complaint with the Dubai Courts Commissioner of Data Protection.

      30. Right to Automated Decision-Making

      You have the right not to be subject to decisions made solely based on automated processing, including profiling, that produce legal or similarly significant effects on you.

      31. Exclusions to User Rights

      While users have the right to object to data processing or request data erasure, these rights may be restricted where processing is necessary:

      • To comply with legal obligations, such as regulatory requirements or court orders.
      • For prevention of fraud or detection.
      • To protect the public interest, including ensuring the security and integrity of our services.

      In such cases, Dubbix will provide clear reasons for limiting user rights upon request.

      32. Exercising Your Rights

      To exercise any of these rights, please contact us at:

      • Email: contact@dubbix.com
      • Mailing Address: Unit GA-00-SZ-L1-RT-208 Level 1, Gate Avenue South Zone Dubai International Financial Centre (DIFC) Dubai, United Arab Emirates

      We will respond to your request promptly and in compliance with the timelines required by Dubai Courts law. In some cases, we may require additional information to verify your identity before fulfilling your request.

      33. Security Measures

      At Dubbix, protecting your personal data is our highest priority. We implement robust security measures to ensure the confidentiality, integrity, and availability of your information. These measures are designed to safeguard your data against unauthorized access, disclosure, alteration, or destruction, in compliance with the Dubai Courts Data Protection Law No. 5 of 2020.

      34. Technical Security Measures

      We employ advanced technical safeguards to protect your data, including:

      • Encryption
        Personal data is encrypted during transmission and storage using industry-standard protocols to prevent unauthorized access.
      • Secure Servers
        All data is stored on secure servers with access controls to protect against cyber threats.
      • Firewalls
        We use firewalls to shield our systems from external attacks.
      • Regular Software Updates
        Systems and applications are regularly updated to mitigate vulnerabilities.

      35. Organizational Security Measures

      To ensure data protection, we have established organizational policies and practices, including:

      • Access Controls
        Access to personal data is restricted to authorized personnel on a need-to-know basis.
      • Employee Training
        Our staff undergoes regular training on data protection laws, security protocols, and best practices.
      • Data Handling Policies
        Internal policies govern how data is collected, processed, and stored securely.

      36. Data Minimization and Anonymization

      • Minimization
        We only collect and retain the minimum amount of personal data necessary to provide our services.
      • Anonymization
        Where possible, personal data is anonymized or pseudonymized to further reduce risks.

      37. Monitoring and Testing

      We continuously monitor our systems and conduct regular testing to ensure their resilience and ability to withstand potential threats:

      • Vulnerability Assessments
        Regular checks for weaknesses in our systems.
      • Penetration Testing
        Simulated attacks to test the strength of our defenses.
      • Audit Logs
        Monitoring and maintaining logs to detect and respond to suspicious activities.

      38. Incident Response and Data Breach Management

      In the unlikely event of a data breach, Dubbix has a comprehensive incident response plan in place:

      • Immediate Action
        Identifying and mitigating the source of the breach.
      • Notification
        Promptly notifying affected individuals and relevant authorities, including the Dubai Courts Commissioner of Data Protection, as required by law.
      • Remediation
        Implementing corrective measures to prevent future incidents.

      39. User Responsibilities

      While we strive to protect your data, you also play an essential role in maintaining security. We encourage users to:

      • Use strong, unique passwords and keep them confidential.
      • Avoid sharing sensitive information with untrusted sources.
      • Report any suspected unauthorized access to your account immediately.

      Users are responsible for ensuring that all data they provide to Dubbix is accurate, complete, and authentic. Users must not upload or process unauthorized third-party data, including voice recordings or other sensitive data, without obtaining the necessary consents. Any misuse of the platform arising from user actions, including the unauthorized use of third-party data, will be the sole responsibility of the user.

      40. Regular Updates to Security Protocols

      Our security measures are continually reviewed and updated to stay ahead of evolving threats and to comply with the latest legal and industry standards.

      41. Third-Party Sharing and Data Processors

      To enhance your experience and improve the performance of our services, Dubbix collects certain device identifiers, including but not limited to:

      • Advertising ID
      • Android ID
      • IMEI (International Mobile Equipment Identity)
      • MAC address

      These identifiers are used for the following purposes:

      • Analyzing app performance, user engagement, and crash diagnostics
      • Delivering personalized content and targeted advertising
      • Enhancing app functionality and user experience

      Ensuring security, fraud prevention, and service integrity

      We may share these identifiers with trusted third-party service providers—such as analytics, attribution, and advertising partners (e.g., Meta, Adjust)—solely for the purposes outlined above.

      All data is handled in accordance with applicable data protection laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA), where applicable. Users can manage their preferences regarding data collection through device settings or by contacting us directly.

       

      42. Third-Party Service Providers

      We engage third-party service providers for specific functions critical to our operations. These may include:

      • Cloud Hosting and Storage Providers
        To securely store and manage data for our platform.
      • Payment Processors
        To process subscription payments and manage financial transactions.
      • Analytics Providers
        To analyze user behavior, improve services, and optimize platform performance.
      • Technical Support and Maintenance Teams
        To diagnose and resolve technical issues.

      43. Purpose of Sharing

      We only share personal data with third parties when it is necessary to:

      • Deliver the services you have requested, such as voice processing, dubbing, and translation.
      • Process payments and manage subscriptions securely.
      • Conduct analytics to improve user experience and platform functionality.
      • Comply with legal obligations or enforce our terms and conditions.

      44. Data Processor Agreements

      All third-party service providers who process your data on our behalf are required to sign robust Data Processing Agreements (DPAs) with Dubbix. These agreements ensure:

      • Compliance with Dubai Courts data protection standards.
      • Appropriate technical and organizational measures to safeguard your data.
      • Restricted use of data strictly for the purposes outlined in our agreements.

      45. Categories of Data Shared

      Depending on the service, the following categories of data may be shared with third parties:

      • Personal data, such as names and contact details, for payment processing.
      • Usage data, such as session logs and interaction data, for analytics.
      • Biometric data, such as voice recordings, for processing speech-to-speech conversion or accent adjustments (where consent is provided).

      46. International Transfers by Third Parties

      In cases where third-party service providers process data outside the Dubai Courts jurisdiction, Dubbix ensures that such transfers comply with Dubai Courts regulations by:

      • Using Standard Contractual Clauses (SCCs) approved by Dubai Courts authorities.
      • Conducting due diligence to confirm that third parties provide adequate data protection measures.
      • Obtaining explicit user consent when required.

      47. Prohibition of Unauthorized Sharing

      Dubbix does not sell or rent your personal data to third parties for their marketing purposes. Any sharing of data is strictly limited to the purposes described in this Privacy Policy and is conducted under contractual safeguards.

      48. Responsibility and Monitoring

      We regularly monitor our third-party service providers to ensure compliance with our data protection standards. In the event of any non-compliance, we take immediate corrective action, including the potential termination of the partnership.

      49. User Rights in Relation to Third-Party Sharing

      You have the right to:

      • Request detailed information about the third parties with whom your data has been shared.
      • Object to the sharing of your data with certain third parties, subject to legal and operational considerations.

      50. Data Retention

      Dubbix retains personal data only for as long as necessary to fulfill the purposes for which it was collected or to comply with legal, regulatory, and contractual obligations. This section outlines our data retention practices in accordance with the Dubai Courts Data Protection Law No. 5 of 2020.

      51. Retention Periods

      We categorize data retention based on the type of data and its purpose:

      • Account Information
        Retained for the duration of your use of Dubbix’s services and up to 6 months after account termination to address post-termination issues, such as customer support or disputes.
      • Transaction and Payment Data
        Retained for a minimum of 2 years to comply with legal and financial reporting requirements.
      • Voice and Biometric Data
        Retained only for the duration of the requested processing and deleted immediately after processing unless explicitly consented to by the user for future use or storage.
      • Usage Data
        Retained for 12 months to analyze trends, improve services, and ensure platform security.
      • Marketing and Consent Records
        Retained for 2 years or until consent is withdrawn by the user.

      52. Factors Influencing Retention

      The retention period for data may vary based on:

      • Legal and regulatory requirements.
      • Operational needs, such as resolving disputes or maintaining accurate financial records.
      • User requests for data deletion or portability, where legally permissible.

      53. Deletion of Data

      When the retention period expires or the data is no longer needed, we take the following steps to ensure secure deletion:

      • Secure Erasure
        Data is permanently deleted from our systems using industry-standard methods.
      • Anonymization
        Where possible, data is anonymized so it can no longer be linked to an individual, enabling continued use for statistical and analytical purposes.

      54. Exceptions to Retention

      In certain situations, data may be retained beyond the standard retention periods:

      • To comply with legal obligations, such as court orders or regulatory investigations.
      • To establish, exercise, or defend legal claims.
      • Where consent is provided by the user for extended retention.

      55. User Rights Related to Retention

      You have the right to:

      • Request Deletion
        Request the deletion of your personal data when it is no longer required for the purposes outlined in this policy.
      • Access Retention Details
        Inquire about the specific retention periods applicable to your data.

      Dubbix regularly reviews its data retention policies to ensure compliance with evolving legal and operational requirements. If you have any questions or concerns regarding our data retention practices, please do not hesitate to reach out.

      56. Cookies and Tracking Technologies

      Dubbix uses cookies and similar tracking technologies to enhance your experience, analyze usage trends, and deliver personalized content and services. This section explains how we use these technologies and your choices regarding their use.

      57. What Are Cookies and Tracking Technologies?

      • Cookies:
        Small text files placed on your device when you visit our website or use our services. They help us recognize your device, improve navigation, and remember your preferences.
      • Tracking Technologies:
        These include pixels, web beacons, and scripts used to collect and track information about user behavior on our platform.

      58. Types of Cookies We Use

      • Essential Cookies:
        • Purpose: Necessary for the basic functionality of our platform, such as logging in and accessing secure areas.
        • Example: Session cookies to maintain user sessions.
      • Performance Cookies:
        • Purpose: Collect data about how users interact with our platform to improve functionality and performance.
        • Example: Measuring page load times or error rates.
      • Functional Cookies:
        • Purpose: Store user preferences to provide a more personalized experience.
        • Example: Language or region preferences.
      • Analytics Cookies:
        • Purpose: Gather information to understand user behavior and optimize our services.
        • Example: Tracking pages visited and time spent on the platform.
      • Marketing Cookies:
        • Purpose: Deliver targeted advertisements and measure the effectiveness of marketing campaigns.
        • Example: Cookies that track browsing history to display relevant ads.

      59. How We Use Cookies

      We use cookies to:

      • Enable essential platform functions.
      • Analyze and understand how users interact with our services.
      • Deliver content tailored to user preferences.
      • Facilitate secure transactions.
      • Improve overall platform usability and performance.

      60. Third-Party Cookies

      Some cookies used on our platform are set by third-party providers, such as:

      • Analytics Services:
        To track user activity and provide insights into website usage (e.g., Google Analytics).
      • Advertising Partners:
        To deliver personalized ads and measure their effectiveness.

      These third parties are required to comply with data protection laws and only process data for the purposes agreed with Dubbix.

      61. Managing Your Cookie Preferences

      You have the right to control and manage cookies on our platform:

      • Consent:
        Upon your first visit, you will be presented with a cookie banner to accept or manage your preferences.
        Non-essential cookies are only set after obtaining your explicit consent.
      • Browser Settings:
        Most browsers allow you to block or delete cookies. Check your browser’s settings for options.
        Note: Disabling cookies may affect the functionality of certain features on our platform.
      • Opt-Out Mechanisms:
        You can opt out of specific types of tracking, such as analytics or marketing, by adjusting your preferences in the cookie banner or via our Cookie Management Tool.

      62. Do-Not-Track (DNT) Signals

      Dubbix honors Do-Not-Track (DNT) signals where supported by your browser. When DNT is enabled, certain tracking technologies may be disabled.

      63. Updates to This Section

      This Cookies and Tracking Technologies policy may be updated periodically to reflect changes in our use of cookies or regulatory requirements. We recommend reviewing this section regularly.

      64. Opt-Out Mechanisms

      Users have the option to opt out of specific data uses or services by:

      • Marketing Communications:
        Following the “unsubscribe” link provided in any promotional emails or contacting us directly at [Insert Contact Email].
      • Non-Essential Cookies:
        Adjusting preferences through our cookie management tool or browser settings.
      • Analytics Tracking:
        Opting out through the analytics provider’s tools, such as Google Analytics’ opt-out browser add-on.

      For further assistance in opting out of any service or data use, users may contact us at contact@dubbix.com.

      65. Children’s Privacy

      Dubbix is committed to protecting the privacy of children and ensuring compliance with applicable laws, including the Dubai Courts Data Protection Law No. 5 of 2020. This section outlines our approach to processing data from users under the age of 16.

      66. Age Restrictions

      • Dubbix’s services are not intended for individuals under the age of 16.
      • We do not knowingly collect, use, or store personal data from children without verifiable parental consent.

      67. Parental Consent

      If we become aware that we have inadvertently collected personal data from a child under 16 without parental consent, we will take the following actions:

      • Promptly delete the data from our systems.
      • Notify the parent or guardian, if contact information is available.
      • Ensure that no further processing occurs until proper consent is obtained.

      68. Features for Educational or Family Use

      If Dubbix introduces features or services intended for educational or family use:

      • We will provide clear information about how data is collected, used, and shared.
      • We will implement mechanisms for parents or guardians to control and monitor data usage.

      69. Parental Rights and Controls

      Parents or guardians have the right to:

      • Access: Request access to their child’s data that may have been inadvertently collected.
      • Correction or Deletion: Request correction or deletion of their child’s personal data.
      • Withdraw Consent: Withdraw previously granted consent at any time.

      70. Reporting Unauthorized Data Collection

      If you believe a child under 16 has provided personal data to Dubbix without parental consent, please notify us immediately at contact@dubbix.com. We will investigate and take appropriate action to address the issue.

      71. Educational Content for Children

      In the event Dubbix provides educational content or services for children, we will ensure compliance with all relevant child data protection laws, including obtaining appropriate parental consents and providing clear disclosures about data usage.

      Dubbix is dedicated to safeguarding children’s privacy and ensuring that our platform is used responsibly. If you have questions or concerns about our practices related to children’s privacy, please contact us.

      72. Changes to the Privacy Policy

      Dubbix reserves the right to update or modify this Privacy Policy at any time to reflect changes in our practices, legal requirements, or the functionality of our services. Any updates will be posted on our website with the effective date clearly indicated.

      If the changes significantly affect your rights or the way we process your personal data, we will notify you in advance through email (where possible) or a prominent notice on our platform. We encourage you to review this Privacy Policy periodically to stay informed about how we are protecting your information.

      By continuing to use Dubbix’s services after the updated Privacy Policy takes effect, you acknowledge that you have read and understood the revised terms. If you do not agree with the changes, you may discontinue using our services.

      73. Contact Information and Complaints

      If you have any questions, concerns, or complaints about this Privacy Policy or the way your personal data is handled, please reach out to us using the contact details provided below. We are committed to addressing your concerns promptly and transparently.

      Contact Information

      • Email: contact@dubbix.com
      • Mailing Address: Unit GA-00-SZ-L1-RT-208 Level 1, Gate Avenue South Zone Dubai International Financial Centre (DIFC) Dubai, United Arab Emirates.

      74. Submitting Complaints

      If you believe your data protection rights have been violated or you have concerns about our compliance with the Dubai Courts Data Protection Law No. 5 of 2020, you can submit a complaint to us through the above contact details. We will investigate the matter and provide a response within the timelines required by law.

      75. Escalating Complaints to the Commissioner of Data Protection

      If you are unsatisfied with our resolution of your complaint, you have the right to lodge a complaint with the Dubai Courts Commissioner of Data Protection. You can contact the Commissioner through the details provided on their official website: https://www.difc.ae/business/registrars-and-commissioners/commissioner-of-data-protection.

      We value your trust and are dedicated to ensuring your privacy concerns are addressed effectively. Please do not hesitate to contact us for further assistance.

      76. Governing Law and Dispute Resolution

      This Privacy Policy is governed by and construed in accordance with the Dubai Courts Data Protection Law No. 5 of 2020 and other applicable laws of the Dubai Courts.

      77. Governing Law

      All matters arising from or related to this Privacy Policy, including its interpretation, application, and enforcement, shall be subject to the laws of the Dubai Courts.

      78. Dispute Resolution

      • Informal Resolution:
        In the event of a dispute regarding this Privacy Policy or the handling of your personal data, we encourage you to first contact us directly at contact@dubbix.com. We will work in good faith to resolve the issue promptly and amicably.
      • Arbitration:
        If the dispute cannot be resolved informally, it shall be referred to arbitration in accordance with the Dubai Courts-LCIA Arbitration Rules. The arbitration shall take place in the Dubai Courts, and the language of arbitration shall be English.
      • Jurisdiction:
        By using our services, you agree that any unresolved disputes shall fall under the exclusive jurisdiction of the courts of the Dubai Courts, unless otherwise required by mandatory legal provisions.

      79. Dispute Resolution for Data Misuse or User Rights Challenges

      In cases where disputes arise concerning alleged misuse of data or the misinterpretation of user rights, Dubbix will prioritize amicable resolution through mediation under Dubai Courts jurisdiction. If mediation does not result in a satisfactory resolution, disputes will be escalated to arbitration under Dubai Courts-LCIA Arbitration Rules.

      80. No Waiver of Rights

      Nothing in this section limits your statutory rights to seek remedies under applicable laws, including filing a complaint with the Dubai Courts Commissioner of Data Protection.

      For any concerns regarding disputes or legal matters, please contact us directly at contact@dubbix.com. We are committed to resolving issues in a manner that respects your rights and complies with applicable laws.

      Table of Contents

        Effective June 29, 2026

        1. Introduction

        At Qorden AI LTD, we are committed to protecting the privacy of our users. This Privacy Policy outlines the types of information we collect from you when you use our website or Software, and how we use, store, and share that information.

        2. Information Collection and Use

        When you use our Site or Software, we may collect certain types of information from you, including but not limited to:

        Personal information: such as your name, email address, phone number, and job title, which you may provide to us when you register for an account or subscribe to our services.

        Usage information: such as the pages you visit on our website, the features of our Software that you use, and the time and date of your visits.

        User data: the data you upload or input into our Software for analysis.

        We use this information to provide our services to you, to improve our Site and Software, and to communicate with you about our services and updates.

        All credit/debit cards details will NOT be stored, sold, shared, rented or leased to any third parties

        3. Information Storage and Security

        We store your information on secure servers located in the United Arab Emirates. We take reasonable measures to protect your information from unauthorized access, disclosure, or destruction, and we periodically review and update our security measures to ensure their effectiveness.

        4. Sharing of Information

        We will not disclose your data to any external parties. All information you provide will be utilized exclusively by us to operate our business and deliver our services. We may, however, disclose your information if required by law, or if we believe that such disclosure is necessary to protect our rights or the rights of others, prevent fraud or other illegal activities, or comply with a court order or other legal process.

        5. Data Hosting and International Access

        Your personal data is securely hosted on servers located within the United Kingdom and Ireland. These jurisdictions are recognized as providing an adequate level of data protection under Article 26 of the Dubai International Financial Centre (DIFC) Data Protection Law No. 5 of 2020, and are also considered adequate under the General Data Protection Regulation (GDPR).

        Access to these systems is restricted to authorized personnel and conducted via secure, encrypted channels. This includes access by team members based in the United Arab Emirates, who access the data solely for operational and support purposes. At this time, no personal data is processed in jurisdictions that are not considered adequate under DIFC, GDPR, or other applicable data protection regulations.

        Should we expand our processing activities to countries outside these recognized jurisdictions, we will ensure that such transfers are conducted in full compliance with applicable laws.

        To enhance your experience and improve the performance of our services, Qorden AI collects certain device identifiers, including but not limited to:

        * Advertising ID
        * Android ID
        * IMEI (International Mobile Equipment Identity)
        * MAC address

        These identifiers are used for the following purposes:

        * Analyzing app performance (if applicable), user engagement, and crash diagnostics
        * Delivering personalized content and targeted advertising
        * Enhancing app functionality and user experience

        * Ensuring security, fraud prevention, and service integrity

        We may share these identifiers with trusted third-party service providers—such as analytics, attribution, and advertising partners (e.g., Meta, Adjust)—solely for the purposes outlined above.

        All data is handled in accordance with applicable data protection laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA), where applicable. Users can manage their preferences regarding data collection through device settings or by contacting us directly.

        6. Your Choices and Rights

        You have the right to access, correct, and delete your personal information that we hold about you. You can do this by contacting us at privacy@qorden.ai.

        You can also unsubscribe from our marketing emails at any time by clicking the “unsubscribe” link at the bottom of the email.

        7. Changes to this Privacy Policy

        We reserve the right to modify this Privacy Policy at any time. If we make material changes to the Policy, we will notify you by email or by posting a notice on our Site. Your continued use of our Site or Software after any such modifications constitutes your acceptance of the updated Privacy Policy.

        8.Contact Us

        If you have any questions or concerns about this Privacy Policy or our data practices, please contact us at privacy@qorden.ai.

        Table of Contents

          Effective June 29, 2026

          1. Introduction

          Your privacy is of utmost importance to us at QDub. This Privacy Policy outlines how we handle your personal information when you use our real-time translation app. We are committed to protecting your data and respecting your privacy in compliance with applicable laws. By using QDub, you consent to the data practices described in this policy.

          2. Who We Are

          QDub is a real-time translation app that enables users to communicate across language barriers. QDub is a part of Qorden, a house of brands focused on breaking down linguistic obstacles through advanced technology.

          3. Data We Collect

          When you use QDub, we collect the following types of personal data to enhance your experience and ensure the best possible service:

          • Account Information: When you register with us, we collect personal details like your name, email address, phone number, and other contact information. This is necessary to create and manage your user account.
          • Usage Data: We automatically collect information about how you use our app, including interactions, feature usage, and diagnostic data. This data helps us understand and improve our services.
          • Voice and Text Inputs: For real-time translation, we process the voice and text data you provide. This data is used solely for translation purposes and is not stored beyond what is required to deliver the service.
          • Device Information: We collect technical information about the device you use to access QDub, such as your device type, operating system, unique device identifiers, and network information.

          4. Purpose of Data Processing

          We use your data for the following purposes:

          • To Provide Our Services: To facilitate real-time translation, ensure seamless communication, and offer the features you use within the app.
          • To Improve QDub: Analyzing usage data helps us identify areas of improvement, optimize performance, and introduce new functionalities to enhance your experience.
          • To Communicate: We may use your contact details to send you updates, answer your queries, or provide customer support.
          • To Comply with Legal Obligations: We may process your data to fulfill legal requirements, protect our legal interests, and prevent misuse or fraudulent activities.

          5. Sharing of Your Data

          Your data will only be shared under the following conditions:

          • With Service Providers: We work with third-party providers to assist with our operations, such as hosting, support, and analytics. These providers are bound by confidentiality agreements and are authorized to use your data solely for the purposes of providing services on our behalf.
          • Legal Compliance: We may disclose your information if required by law, regulation, or legal process, or in response to valid requests by public authorities.

          6. Data Retention

          We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, comply with legal obligations, or enforce our agreements. Afterward, we will securely delete or anonymize your information.

          7. Your Rights and Choices

          You have certain rights in relation to your personal data:

          • Access: You may request access to the personal information we hold about you.
          • Correction: If you find any inaccuracies in your data, you have the right to request corrections.
          • Deletion: You can request that we delete your personal data, subject to certain conditions.
          • Objection: You have the right to object to specific types of data processing, including marketing communications.

          To exercise these rights, please contact us using the details provided in Section 12.

          8. Security of Your Data

          We take the protection of your data seriously. We employ appropriate technical and organizational measures to ensure the security of your information, including encryption and access controls, to safeguard against unauthorized access, loss, or misuse.

          9. International Transfers

          Your personal data may be transferred to, and processed in, countries other than the one in which you reside. These countries may have data protection laws different from those of your country. In such cases, we will ensure that appropriate safeguards are in place to protect your data in accordance with this Privacy Policy.

          10. Use of Cookies

          QDub uses cookies and similar technologies to enhance user experience, analyze usage, and improve our services. You can manage your cookie preferences in your browser settings. Note that some features of the app may not function properly if cookies are disabled.

          11. Updates to This Privacy Policy

          We may update this Privacy Policy from time to time to reflect changes in our practices or for other operational, legal, or regulatory reasons. We encourage you to review this policy periodically. If we make material changes, we will notify you through the app or other means.

          12. Contact Us

          If you have any questions, concerns, or requests regarding this Privacy Policy or your personal data, please contact us at:

          Email: contact@qdub.ai