Privacy Policy

Last updated: October 21, 2025

Welcome to Tunee (the "Platform"). The Platform is provided and controlled by QUSTAR TECHNOLOGY PTE. LTD. ("Tunee", "we" or "us"). We are committed to protecting and respecting your privacy.

By accessing or using our website, services, applications, products and content (that include but are not limited to the Platform) (collectively, the "Services"), you acknowledge that you have read this Privacy Policy ("Policy") and that you understand how we will collect, use and process your personal information. If you do not agree with this Policy in general or any part of it, we recommend that you do not use our Services.

If you have any questions about how we use your information, please contact service@tunee.ai.

1. The types of information we collect

We collect your information in the following scenarios:

Account Registration

When you register an account, we collect your Google Play / Apple ID / email and related account information for the purposes of creating your account, displaying your profile, and providing customer support.

Sign-in and Use of the Product

When you sign in and use the product, we collect technical information to provide core functionality, ensure service security, and improve the user experience, including but not limited to: IP address, location information, unique device identifiers, browsing history (e.g., content viewed on the platform), mobile carrier, time-zone settings, and mobile/device information (such as device model, screen resolution, operating system, and platform information).

Creating Works via Tunee

When you create works through Tunee, we collect behavioral information to enable creative features and content services, including but not limited to: user-generated content, interaction records with Tunee, and any works you generate or upload via the platform.

Cookies and Similar Technologies

When you use the platform, we automatically collect technical information via cookies, device fingerprinting, and browsing data to provide basic service functions, analyze visits and usage, and optimize product experience and operational strategies.

Platform Management and Operations

When you use the Services, we process necessary technical information and usage records for platform management, system stability and security, and data analysis/research, in order to: maintain stable and secure operations, conduct troubleshooting and fixes, optimize features and user experience, perform statistical analysis and user-satisfaction surveys, and improve service quality.

Customer Service and Support

When you use customer service and technical support, we collect contact information (e.g., email), issue descriptions, service records, and communication history to respond to inquiries and complaints, provide technical support, resolve product issues, and improve service quality.

Payments and Transactions

When you make payments or conduct transactions on the platform, we collect payment information (processed via third-party payment providers), transaction records, and order information to process payments, generate orders, issue invoices, and handle refunds.

Security and Risk Control

When you use the Services, we collect login logs, records of anomalous behavior, security-verification information, and risk-scoring data to prevent fraud and malicious activities, protect account security, detect abnormal logins, and prevent abuse of the platform.

2. How we use your information

We will use the information we collect about you in the following ways:

  • to administer the Platform (i.e. to provide our Services to you) and for internal operations, including troubleshooting, data analysis, testing, research, statistical and survey purposes (i.e. to guarantee the Platform's stability and security) and to solicit your feedback;
  • to allow you to participate in interactive features of the Platform, when you choose to do so;
  • to personalize the content you receive and provide you with tailored content that will be of interest to you;
  • to improve and develop our Platform and conduct product development;
  • to provide you with services based on the country settings you have chosen, such as the content that is related to the country settings;
  • to make your information available to other users in accordance with the privacy settings you chose for the respective information;
  • to show you content that is similar to content you liked or interacted with (by commenting and/or watching the content), content from your region as well as content from users you follow;
  • to enable our messenger service to function and you can choose to delete any information in this regard on your discretion via the clear cache function within the Platform's settings;
  • to help us detect abuse, fraud, and illegal activity on the Platform;
  • to notify you about changes to our Services;
  • to communicate with you;
  • to provide you with user support;
  • to comply with applicable laws and requests made by regulatory authorities; and
  • to enforce our terms, conditions and policies.

3. How we share your information

We will share your information with the following selected third parties:

(1) Google Sign

  • Category: Account Info
  • Collection / Use Purpose: Used for Google One Tap sign-in
  • Business Function / Scenario: First-time registration; sign-in
  • Personal Data Involved: Profile photo, display name, email address
  • Privacy Policy: https://policies.google.com/privacy

(2) Apple ID Sign-In

(3) Mixpanel

  • Category: Analytics
  • Collection / Use Purpose:
    1. Analyze user behavior and product usage
    2. Optimize features and UX
    3. Compile usage statistics and trends
    4. Retention and conversion analysis
    5. A/B testing and feature evaluation
    6. Generate reports and insights
  • Business Function / Scenario:
    1. Page view & feature-usage tracking
    2. User path analysis
    3. Event tracking (e.g., clicks, sign-ups, purchases)
    4. Segmentation & profiling
    5. Funnel conversion analysis
    6. Retention statistics
  • Personal Data Involved: User identifiers (user ID, anonymous/distinct ID, device ID); account info (username, email, registration time—if you choose to send it); device info (model, OS & version, app version, screen size); network info (IP address, carrier, network type – Wi-Fi/mobile); geolocation based on IP (country, city); browser info (type, version, language), time zone
  • Privacy Policy: https://mixpanel.com/security-privacy/

(4) Discourse

  • Category: Community Forum
  • Collection / Use Purpose:
    1. Provide community forum features (posts, comments, interactions)
    2. User authentication & account management
    3. Content display & community moderation
    4. Behavior analysis & UX improvements
  • Business Function / Scenario:
    1. Forum browsing and content publishing
    2. User registration/sign-in (incl. SSO if enabled)
    3. Topic discussions, comments, DMs (if enabled)
    4. Notifications
  • Personal Data Involved: Basic info (username, nickname, avatar, email); account info (user ID, login credentials); content info (posts, comments, uploaded images/attachments); behavioral info (browsing history, likes/favorites, reading duration); device info (IP address, browser type, OS, device identifiers); cookies & similar tech
  • Privacy Policy: https://www.discourse.org/privacy

(5) Castle.io

  • Category: Security & Risk Control
  • Collection / Use Purpose:
    1. Detect and prevent fraud & account takeover
    2. Identify suspicious sign-ins and anomalous activity
    3. Protect account security
    4. Block bot attacks & abuse
    5. Risk scoring & security decisions
  • Business Function / Scenario:
    1. Login security checks
    2. Registration risk detection
    3. Protection for sensitive actions (e.g., password change, payments)
    4. Anomaly detection & blocking
    5. MFA triggers
  • Personal Data Involved: Device fingerprint, device ID, browser info, IP address, network type, ISP info; behavioral signals (mouse movement, typing patterns, touch behavior, page interactions); session info (session ID, timestamps, request headers); account info (user ID, email—encrypted/hashed); event info (login attempts, registration, transactions)
  • Privacy Policy: https://castle.io/privacy

(6) Sentry

  • Category: Error Monitoring
  • Collection / Use Purpose:
    1. Monitor and log app errors/crashes
    2. Trace performance issues and bottlenecks
  • Business Function / Scenario:
    1. Crash monitoring & reporting
    2. JavaScript error capture
    3. Failed network request tracing
    4. Performance metrics (page load, API response time)
  • Personal Data Involved: User identifiers; device & environment info; network info; error and performance data
  • Privacy Policy: https://sentry.io/privacy/

(7) Firebase (Crashlytics)

  • Category: Device / Crash Data
  • Collection / Use Purpose: Capture, track, and analyze app crashes to improve stability
  • Business Function / Scenario: Used alongside Google sign-in flow
  • Personal Data Involved: RFC-4122 UUID (to de-duplicate crashes); Crashlytics Installation UUID; Firebase Installation ID (FID); Firebase Session ID; crash timestamp; app package identifier & full version; OS name & version; device model, CPU architecture, RAM & disk; per-thread instruction pointers; method/function names (if available at runtime); exception class & message (if thrown); fatal signal name & code (if any); each loaded binary image name/UUID/size/base address; app background state; screen orientation at crash; proximity sensor state
  • Privacy Policy: https://firebase.google.com/support/privacy

(8) Alibaba Cloud OSS (Ali-OSS)

  • Category: Cloud Storage
  • Collection / Use Purpose:
    1. Store and manage user-uploaded files
    2. Provide file download & access
    3. Backup & archiving
    4. Static hosting & CDN acceleration
    5. Ensure data security & reliability
    6. Access control
  • Business Function / Scenario: Document storage; data backup & archiving
  • Personal Data Involved: User-uploaded file contents (images, videos, documents); file metadata (filename, size, format, upload time); file access path (Object Key)
  • Privacy Policy: https://www.alibabacloud.com/help/en/legal/latest/alibaba-cloud-international-website-privacy-policy

(9) AliyunCaptcha

(10) Stripe

  • Category: Payments
  • Collection / Use Purpose: Process online payments and transactions
  • Business Function / Scenario: Online payments for goods and services
  • Personal Data Involved: Payment information; account & identity information; transaction data; device & technical information
  • Privacy Policy: https://stripe.com/privacy

Additional Sharing

We will also share your information with any member, subsidiary, parent, or affiliate of our corporate group, only for the purposes set out above, to assist in the improvement and optimisation of the Platform, in order to prevent illegal uses, increase user numbers, development, engineering and analysis of information or for our internal business purposes.

We will share your information with law enforcement agencies, public authorities or other organizations if legally required to do so, or if such use is reasonably necessary to:

  • comply with legal obligation, process or request;
  • enforce our Terms of Services and other agreements, policies, and standards, including investigation of any potential violation thereof;
  • detect, prevent or otherwise address security, fraud or technical issues; or
  • protect the rights, property or safety of us, our users, a third party or the public as required or permitted by law (including exchanging information with other companies and organizations for the purposes of fraud protection and credit risk reduction).

4. What you can do with your information

If you have registered for an account, you may access and update certain personal information that you have provided to us by logging into your online account and using the features and functionalities available there.

In addition, you may request that we delete any personal information we hold about you on the Platform or delete your account with us via service@tunee.ai, subject to the Terms and conditions of the Platform and applicable laws and regulations.

5. The security of your information

We take steps to ensure that your information is treated securely and in accordance with this Policy. Unfortunately, the transmission of information via the internet is not completely secure. Although we will do our best to protect your information, for example, by encryption, we cannot guarantee the security of your information transmitted through the Platform.

We take appropriate technical and organizational measures to protect personal data from loss, misuse and unauthorized access, disclosure, alteration and destruction. We maintain these technical and organizational measures and will amend them from time to time to improve the overall security of our systems.

Please note that the Platform DOES NOT know your account information of your Google, Apple, or other email account, as these third parties only communicate via specific encrypted token with the Platform. And if you registered with phone number, you are the ONLY user to view it in the Platform.

6. How long we keep your information

We use the following criteria to determine the period for which we will keep your information:

  • our contractual obligations and rights in relation to the information involved;
  • legal obligation(s) under applicable law(s) and regulations to retain data for a certain period of time;
  • statute of limitations under applicable law(s);
  • our legitimate business purposes; and
  • disputes or potential disputes.

After you have terminated your use of our Services, we can store your information in an aggregated and anonymous format. Notwithstanding the foregoing, we can also retain any personal information as reasonably necessary to comply with our legal obligations, allow us to resolve and litigate disputes, and to enforce our agreements.

7. Information relating to children

The Platform is not directed at children under the legal age in your country or region. If you're under the legal age, please do not use our Services, and do not provide any personal information to us. If you're a parent of a child under the legal age and become aware that your child has provided personal data to us, please contact us. If we find that personal information has been collected from people under the legal age, we will delete that information and terminate that person's account. If you think we collect information about children under the legal age or that is prohibited by applicable law, please contact us via service@tunee.ai.

8. Changes

We will generally notify all users of any material changes to this Policy, through a notice on our Platform. However, you should look at this Policy regularly to check for any changes. We will also update the "Last Updated" date at the top of this Policy, which reflects the effective date of the Policy. Your continued access to or use of the Services after the date of the updated Policy constitutes your acceptance of the updated Policy. If you do not agree to the updated Policy, you must stop accessing or using the Services.

9. Contact

If you have any questions or concerns, please do not hesitate to contact us via service@tunee.ai.

QUSTAR TECHNOLOGY PTE. LTD.
3 FRASER STREET #04-23A DUO TOWER SINGAPORE (189352)