If you have a Cubbit account as an individual person, for those to whom the GDPR applies, Cubbit is the “data controller” for processing of personal information as described below. In other cases, if you are a legal person (i.e. company or organisation), you will be considered as “data controller” and Cubbit will be a "data processor," acting on instructions given from the data controller.
With regard to the processing of files uploaded to our distributed cloud network by users, however, Cubbit is always to be considered the “data processor” and the user (person or company or organization) owning the Cubbit account is the data controller, until account termination.
However, since we believe in the potential of our community, being part of our network gives both rights and duties (please, again, refer to our Terms of Use). In this sense, users who are also Cubbit Cell holders are to be considered themselves as sub-processors on behalf of Cubbit under Art. 28 (4) GDPR.
You can find a legal definition of “data controller” and “data processor” according to the EU legislation at the following link
here.