Privacy Policy

Qube Compute LLP, registered under the Astana International Financial Centre (AIFC), is the data controller for personal data collected through this website and our services. Our registered address is SEZ PIT Alatau, Almaty, Kazakhstan. All data processing activities are governed by AIFC data protection regulations, which are based on English Common Law principles and aligned with GDPR standards.

We collect the following categories of personal data: • Contact Information: Full name, work email address, company name, phone number — collected via contact forms and reservation requests. • KYC/AML Data: Government-issued ID, corporate registration documents, beneficial ownership information, source of funds declarations — required for compliance with BIS export controls (ECCN 3A090/4A003.z) and ComplyAdvantage screening. • Payment Information: Banking details for SWIFT transfers, wallet addresses for crypto payments — processed through Al Hilal Bank escrow or Request Finance/Coinbase Commerce. We do not store credit card numbers. • Technical Data: IP address, browser type, device information, access timestamps — collected automatically for security and analytics. • Usage Data: Pages visited, features used, GPU utilization metrics — collected for service improvement and billing.

We process personal data under the following legal bases: • Contract Performance: Processing necessary to provide GPU cloud services, manage reservations, and fulfill service agreements. • Legal Obligation: KYC/AML verification required by AIFC regulations, BIS export compliance (US Bureau of Industry and Security), and anti-money laundering laws. • Legitimate Interest: Security monitoring, fraud prevention, service optimization, and business development communications. • Consent: Marketing communications and newsletter subscriptions — you may withdraw consent at any time.

As a provider of advanced GPU compute infrastructure subject to US export controls, we are required to perform thorough due diligence: • Identity Verification: All clients must complete KYC verification before GPU access is activated. We use ComplyAdvantage for automated screening against global sanctions lists, PEP databases, and adverse media. • End-User Certificate (EUC): Required for NVIDIA Rubin R100 NVL72 hardware access under ECCN 3A090/4A003.z classification. • Ongoing Monitoring: Quarterly re-verification of all active clients. Automated alerts within 15 minutes of any sanctions list changes affecting our client base. • Data Retention: KYC/AML records are retained for a minimum of 5 years after the end of the business relationship, as required by AIFC anti-money laundering regulations.

As an AFSA-certified Sharia-compliant entity: • No Interest-Bearing Data Monetization: We do not sell, rent, or trade personal data for profit. • Mudaraba Transparency: Financial data related to the Mudaraba partnership structure is shared only with authorized escrow administrators at Al Hilal Bank. • Ethical AI: Client training data and model outputs processed on our infrastructure remain exclusively owned by the client. We do not use client data to train our own models.

We share personal data only with: • Al Hilal Bank: Escrow account administration for payment processing. • ComplyAdvantage: KYC/AML screening and sanctions monitoring. • Request Finance / Coinbase Commerce: Cryptocurrency payment processing. • AIFC Court & IAC: Only if required by legal proceedings or arbitration. • Vercel: Website hosting (data processed in EU/US regions). • Government Authorities: Only when legally compelled by AIFC court order or regulatory requirement. We never sell personal data to third parties.

We implement enterprise-grade security measures: • Encryption: AES-256 at rest, TLS 1.3 in transit for all data. • Network Isolation: Dedicated network segments per client — your data never co-mingles with other tenants. • Physical Security: Tier III TIA-942 certified facility with 24/7 security, biometric access, and CCTV surveillance. • Access Controls: Role-based access with multi-factor authentication for all administrative systems. • Audit Logging: Full audit trail of all data access and modifications.

Your data may be transferred to and processed in Kazakhstan (AIFC jurisdiction). The AIFC operates under English Common Law with data protection standards substantially similar to GDPR. For transfers outside AIFC jurisdiction, we rely on Standard Contractual Clauses (SCCs) or equivalent safeguards.

Under AIFC data protection regulations, you have the right to: • Access: Request a copy of all personal data we hold about you. • Rectification: Correct inaccurate or incomplete personal data. • Erasure: Request deletion of your personal data (subject to legal retention requirements). • Restriction: Limit how we process your data in certain circumstances. • Portability: Receive your data in a structured, machine-readable format. • Objection: Object to processing based on legitimate interests. To exercise these rights, contact us at privacy@qubecompute.com. We will respond within 30 days.

We use essential cookies for website functionality and analytics cookies (Google Analytics 4) to understand site usage. You can manage cookie preferences through your browser settings. We do not use advertising cookies or tracking pixels.

We may update this Privacy Policy to reflect changes in our practices or legal requirements. Material changes will be notified via email to registered users and posted on this page with an updated effective date.

For privacy-related inquiries or complaints: • Email: privacy@qubecompute.com • Address: Qube Compute LLP, SEZ PIT Alatau, Almaty, Kazakhstan • Regulatory Authority: AIFC Data Protection Authority If you are unsatisfied with our response, you have the right to lodge a complaint with the AIFC Data Protection Authority or pursue resolution through the AIFC Court.