Privacy Policy

NBT NA LLC (Nubeto)
Last Updated: 2/11/2026

NBT NA LLC (“NBT,” “we,” “us,” or “our”), operating under the brand Nubeto, is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, store, and protect information when you visit our website at https://nuebto.com, create an account, use our mobile applications, or use our connected products and related services (collectively, the “Services”).

We design our products and services to minimize the collection and cloud storage of in-home data wherever reasonably possible.

This Privacy Policy is intended to support compliance with applicable Canadian privacy laws, including the Personal Information Protection and Electronic Documents Act (PIPEDA), and applicable U.S. privacy laws, including the California Consumer Privacy Act, as amended by the California Privacy Rights Act (CCPA/CPRA).

By using our Services, purchasing a product, downloading our app, or registering an account, you acknowledge that you understand and accept the practices described in this Privacy Policy.

1. Information We Collect

1.1 Information You Provide to Us

We may collect information you provide directly to us when you create an account, place an order, register a device, contact support, sign up for communications, or otherwise interact with us.

This information may include:

  • Name
  • Email address
  • Phone number
  • Billing address
  • Shipping address
  • Country, province/state, and postal/zip code
  • Account credentials, such as username and password
  • Information you include in support requests, warranty requests, or other communications

Payment information is processed by third-party payment providers and is not stored by NBT except as needed for transaction confirmation, fraud prevention, refunds, chargeback handling, accounting, or legal compliance.

1.2 Account Registration and App Sign Up

When you use the Nubeto mobile app, you may be required to create an account to access certain features. During account creation, we may collect information such as your email address, password, country, province/state, and postal/zip code.

After creating an account, you may pair the app with one or more Nubeto devices. We may also collect information you provide to help configure or organize your device, such as a room name, device nickname, or similar descriptive information.

If you choose to share access to a device with another person, we may collect the information needed to facilitate that sharing, such as the invited user’s email address.

1.3 Device and Product Data

When you use a Nubeto device, the device may collect and process technical, environmental, and operational information needed to provide the Services and operate the device.

This may include:

  • Device identifiers, such as serial number and MAC address
  • Device registration information
  • Device configuration and settings
  • Temperature and humidity data
  • Device status and operating state
  • Firmware version and update status
  • System health information
  • Error, crash, and diagnostic information

Presence / Occupancy Data

Nubeto devices may include presence sensing technology. Presence detection is processed on the device. No raw presence sensor data is uploaded to the cloud. Only a simple occupancy state, such as occupied or unoccupied, may be used by the device or transmitted as necessary to support device functionality.

Device History and Usage History

Nubeto is designed so that device history, usage history, and similar historical operating data are stored on the device, rather than in the cloud as part of normal operation. This history is generally accessible only while the device is online and reachable. If the device is offline, some history features may not be available until the device reconnects.

Diagnostics

We may transmit limited diagnostic, troubleshooting, error, crash, and service reliability information to cloud infrastructure in order to operate the Services, investigate problems, provide support, improve security, and maintain device stability. We do not upload detailed device usage history to the cloud as part of normal operation, except to the limited extent such information is included in diagnostics needed for troubleshooting or support.

1.4 What We Do Not Collect

  • We do not record or collect audio
  • We do not record or collect video
  • We do not upload raw presence sensor data to the cloud
  • We do not use presence sensing to identify specific individuals
  • We do not store normal device usage history in the cloud as part of standard operation

1.5 Automatically Collected Website and App Information

When you use our website or app, we may automatically collect certain technical information, such as:

  • IP address
  • Browser type
  • Operating system
  • Mobile device identifiers
  • App version information
  • Crash logs and diagnostic logs
  • General usage, traffic, and performance information

We use this information to operate, secure, troubleshoot, and improve the Services.

1.6 Cookies and Similar Technologies

Our website may use cookies and similar technologies to support core site functionality, remember preferences, understand site usage, improve performance, and support security. You can adjust your browser settings to refuse some or all cookies, although doing so may affect how the site functions.

2. How We Use Information

We may use the information we collect to:

  • Provide, operate, and maintain the Services
  • Create and manage user accounts
  • Register, pair, provision, and manage devices
  • Enable remote access and control features
  • Provide customer service and technical support
  • Process orders, payments, refunds, and related transactions
  • Send service-related notices, security alerts, updates, and administrative communications
  • Diagnose errors, maintain reliability, and improve security and performance
  • Comply with legal obligations and enforce our agreements
  • Protect our rights, users, products, and Services

We seek to collect, use, and disclose personal information only for purposes that a reasonable person would consider appropriate in the circumstances.

3. Cloud Infrastructure and Storage

We may use cloud service providers, including Amazon Web Services (AWS), to support account services, authentication, backend infrastructure, device connectivity, service operations, security monitoring, and diagnostics.

Cloud systems may store account information, device registration information, connectivity metadata, and diagnostic information. However, as described above, normal device usage history and historical operating data are intended to remain on the device rather than in cloud storage.

4. When We Share Information

We do not sell your personal information.

We may disclose personal information in the following circumstances:

  • To service providers and contractors that support our business, such as hosting, infrastructure, payment processing, security, customer support, shipping, and similar operational services
  • To third-party integrations or platforms that you choose to connect or enable
  • To comply with applicable law, regulation, legal process, or enforceable governmental request
  • To protect the rights, safety, security, and property of NBT, our users, or others
  • As part of a merger, acquisition, financing, reorganization, or sale of all or part of our business or assets
  • With your consent or at your direction

We require service providers that handle personal information on our behalf to use appropriate confidentiality and security protections and to process that information only for authorized purposes.

5. Third-Party Integrations

Nubeto products and Services may support integrations with third-party services, platforms, or connected home ecosystems. If you enable a third-party integration, certain information may be shared with that third party as needed to support the integration. Your use of those third-party services is subject to their own terms and privacy policies.

6. Retention of Personal Information

We retain personal information only for as long as necessary to fulfill the purposes for which it was collected, including providing the Services, meeting legal and accounting requirements, resolving disputes, enforcing agreements, and maintaining appropriate business records.

Where appropriate, we may de-identify, anonymize, or aggregate information so that it no longer identifies an individual.

Because some device history is stored locally on the device, retention of that history may also depend on available device storage, device settings, resets, firmware changes, or user actions affecting the device.

7. Safeguards and Security

We use reasonable administrative, technical, and physical safeguards designed to protect personal information against unauthorized access, loss, theft, misuse, disclosure, copying, use, modification, or destruction. These measures may include encryption in transit, access controls, authentication measures, secure cloud infrastructure, and role-based internal access controls.

No method of transmission or storage is completely secure, and we cannot guarantee absolute security.

8. Cross-Border Processing

Personal information may be processed or stored in Canada, the United States, or other jurisdictions where we or our service providers operate. When information is transferred across borders, it may be subject to the laws of those jurisdictions.

We use reasonable contractual, technical, and organizational measures intended to protect personal information in a manner consistent with applicable law.

9. Your Privacy Rights in Canada

9.1 PIPEDA Principles

Where PIPEDA applies, our privacy practices are intended to reflect core privacy principles including accountability, identifying purposes, obtaining meaningful consent, limiting collection, limiting use, disclosure, and retention, maintaining accuracy, using appropriate safeguards, openness, providing access, and enabling individuals to challenge compliance.

9.2 Access, Correction, and Withdrawal of Consent

Subject to applicable law and limited exceptions, you may request access to the personal information we hold about you and request correction of inaccurate or incomplete personal information.

You may also withdraw your consent to certain collections, uses, or disclosures of your personal information, subject to legal or contractual restrictions and reasonable notice. If you withdraw consent, some Services or features may no longer be available to you.

9.3 Questions and Complaints

If you have questions, concerns, or complaints about our privacy practices, or if you would like to exercise your privacy rights, you may contact us at privacy@nuebto.com.

If you believe your concerns have not been addressed, you may have the right to contact the Office of the Privacy Commissioner of Canada.

10. California Privacy Rights

If you are a California resident, you may have the following rights, subject to applicable exceptions:

  • The right to know the categories of personal information we collect, the sources of that information, the purposes for collection, and the categories of third parties to whom it is disclosed
  • The right to request access to specific pieces of personal information we have collected about you
  • The right to request deletion of personal information we have collected from you
  • The right to request correction of inaccurate personal information
  • The right to opt out of the sale or sharing of personal information, where applicable
  • The right not to be discriminated against for exercising your privacy rights

We do not sell personal information, and we do not share personal information for cross-context behavioral advertising as those terms are defined under California law.

We do not use or disclose sensitive personal information for purposes that would require offering a separate right to limit under CPRA, except as permitted by law.

California residents may submit privacy requests by contacting us at privacy@nuebto.com. We may need to verify your identity before processing a request.

11. Children’s Privacy

Our Services are not directed to children under 13, and we do not knowingly collect personal information from children under 13. If you believe a child has provided personal information to us, please contact us so that we can review and address the issue.

12. Marketing Communications

If you sign up to receive promotional or marketing communications from us, you may unsubscribe at any time by following the unsubscribe instructions included in the communication or by contacting us. Service, transactional, security, warranty, and account-related communications may still be sent where necessary even if you opt out of marketing messages.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. If we make changes, we will post the updated version on this page and update the “Last Updated” date above. Your continued use of the Services after changes become effective indicates your acceptance of the revised Privacy Policy.

14. Contact Us

NBT NA LLC (Nubeto)
Website: https://nuebto.com
Email: privacy@nuebto.com