Trust, Legal & Regulatory Framework

Legalities & Compliance

Kuinbee's legal position, regulatory posture, risk allocation architecture, and compliance standards — built for enterprise trust at global scale.

Last Updated

March 2026

Framework Type

Compliance Document

Jurisdiction

India (Pune, MH)

Compliance Framework Overview

Important

Kuinbee Information Services Private Limited operates a technology-enabled global data marketplace and AI data infrastructure platform via kuinbee.com. This framework explains Kuinbee's legal position, regulatory posture, risk allocation architecture, and compliance standards.

Protects Kuinbee legally
Infrastructure-grade positioning
Reduces regulatory exposure
Increases enterprise trust
Supports global expansion
Investor-ready compliance

Quick Navigation

16
1
Structure

Marketplace Intermediary Status

Kuinbee operates as a technology intermediary and marketplace facilitator. Kuinbee does not create, generate, or independently determine the purpose or means of processing of third-party Datasets listed by Suppliers.

Suppliers act as independent data controllers or data providers (as applicable under relevant law) for the Datasets they upload. Buyers act as independent data controllers or processors for downstream usage.

Kuinbee does not assume liability for:

  • The accuracy of third-party datasets
  • The legality of Supplier data collection
  • Buyer's downstream processing decisions
2
Privacy

Data Protection & Privacy Framework

Applicable Regulatory Coverage

Kuinbee is structured to operate in alignment with applicable data protection and privacy laws including, where relevant:

  • Digital Personal Data Protection Act, India (DPDP)
  • General Data Protection Regulation (GDPR)
  • California Consumer Privacy Act (CCPA/CPRA)
  • HIPAA (if healthcare-related data is involved)
  • Sector-specific financial, telecom, or regulatory frameworks
  • Cross-border data transfer laws

Role Classification

As Data Controller

Platform user accounts

Payment & billing data

Internal analytics

Corporate operations

As Data Processor

Where Kuinbee processes data on behalf of users within its SaaS infrastructure

Not a Controller

For third-party datasets uploaded by Suppliers

Supplier determines lawful basis

Buyer determines downstream purpose

3
Privacy

Data Processing Addendum (DPA)

Kuinbee maintains a Data Processing Addendum framework covering:

  • Standard Contractual Clauses (SCCs)
  • Cross-border transfer mechanisms
  • Sub-processor oversight
  • Security safeguards
  • Breach notification standards
  • Data subject rights coordination

Enterprise customers may request a DPA by contacting legal@kuinbee.com.

4
Operations

Data Credibility Check (DCC) Framework

Kuinbee conducts an internal Data Credibility Check (DCC) process to assess:

  • Technical structure and format quality
  • Metadata completeness
  • Source traceability
  • Licensing consistency
  • Internal quality benchmarks

DCC and KDTS do not constitute:

⚠️ Certification · Legal validation · Accuracy guarantee · Regulatory approval · Commercial assurance. They are internal screening mechanisms only.
5
Ethics

Responsible AI & Ethical Use Policy

Kuinbee prohibits use of Datasets for:

  • Unlawful surveillance
  • Discriminatory profiling
  • Human rights violations
  • Biometric misuse without lawful authority
  • Malicious AI deployment
  • Autonomous weaponization
  • Social scoring systems prohibited by law

Buyers using Datasets for AI training must:

  • Ensure lawful basis for training data
  • Implement bias mitigation controls
  • Maintain auditability of AI outputs
  • Comply with applicable AI governance regulations

Kuinbee reserves the right to suspend users engaged in harmful AI use.

6
Compliance

Export Control & Sanctions Compliance

Users must comply with:

  • International sanctions laws
  • Export control regulations
  • Trade restriction regimes

Kuinbee may restrict access to certain jurisdictions. Users represent they are not sanctioned entities, listed under prohibited trade lists, or acting on behalf of restricted parties.

7
IP

Intellectual Property Protection & Takedown Policy

Kuinbee respects intellectual property rights. If a party believes a Dataset infringes IP rights, a formal takedown notice may be submitted.

Upon receiving a credible notice, Kuinbee may:

  • Suspend the listing pending investigation
  • Investigate the claim
  • Request supporting documentation
  • Permanently delist content

Repeat infringers may be permanently banned from the Platform.

8
Security

Security & Infrastructure Safeguards

Kuinbee implements commercially reasonable security measures including:

  • Encrypted data transmission (TLS/HTTPS)
  • Access control protocols
  • Role-based permissions
  • Secure cloud infrastructure
  • Continuous monitoring
  • Incident response planning
  • Internal audit mechanisms

Security measures are reviewed periodically and updated to align with industry standards.

9
Security

Breach Notification Framework

In case of a security incident affecting Platform-controlled data, Kuinbee will:

  • Investigate promptly
  • Notify affected users as required by applicable law
  • Coordinate mitigation steps

Suppliers must notify Kuinbee within 48 hours of:

  • Any dataset-related data breach
  • Regulatory investigation initiated against a listed Dataset
  • Legal challenge or notice involving a Dataset
10
Financial

Payment, AML & Fraud Compliance

Kuinbee implements fraud monitoring systems. Kuinbee may:

  • Withhold payouts pending investigation
  • Suspend accounts suspected of fraud
  • Reverse transactions where fraud is detected
  • Report suspicious activity to relevant authorities

Users are responsible for their own tax compliance including GST, VAT, or other applicable taxes. Kuinbee does not act as a tax agent for any user.

11
Compliance

Regulatory Cooperation

Kuinbee reserves the right to:

  • Cooperate with lawful government requests and subpoenas
  • Provide information when legally required
  • Suspend or remove content posing regulatory risk
12
Compliance

Risk Allocation Framework

Supplier Responsibility

Dataset legality
Lawful collection
Consent validity
IP clearance
Regulatory compliance
Refund liability

Buyer Responsibility

Downstream use compliance
Regulatory obligations
AI deployment decisions
Commercial decisions
Integration risks

Kuinbee Responsibility

Operating marketplace infrastructure
Conducting internal screening
Facilitating transactions
13
Legal

Limitation of Liability

To the maximum extent permitted by law, Kuinbee shall not be liable for:

  • Dataset inaccuracies from third-party Suppliers
  • Commercial losses or lost profits
  • Regulatory penalties arising from user non-compliance
  • Indirect or consequential damages
  • Buyer–Supplier disputes

Aggregate liability is limited as stated in the Terms & Conditions.

14
Legal

Survival of Obligations

The following obligations survive termination of any agreement with Kuinbee:

  • Indemnity obligations
  • Refund liability
  • IP ownership rights
  • Confidentiality obligations
  • Financial recovery rights
  • Regulatory cooperation clauses
15
Legal

Governing Law

This Legal Framework is governed by the laws of India. Courts at Pune, Maharashtra have exclusive jurisdiction unless otherwise agreed in writing.

16
General

Modifications

Kuinbee may update this Legalities & Compliance Framework periodically. Continued use of the Platform constitutes acceptance of revisions.

Questions About Our Compliance Framework?

Enterprise DPA requests, regulatory queries, IP takedown notices, and compliance questions can be directed to:

Legal

legal@kuinbee.com

Support

kuinbee.com/support