Privacy Policy
Our Privacy Policy
This Privacy Policy describes the policies and procedures of Tahcom AI regarding the collection, use, processing, protection, and disclosure of Personal Data when you use our websites, applications, platforms, or technical services.
This Privacy Policy is prepared in compliance with the Saudi Personal Data Protection Law (PDPL), as well as the requirements and guidelines of the National Cybersecurity Authority (NCA) and the Communications, Space & Technology Commission (CST) of the Kingdom of Saudi Arabia.
By using the Service, you acknowledge that you have read, understood, and agreed to the collection and use of your Personal Data in accordance with this Privacy Policy.
1. Definitions
For the purposes of this Privacy Policy:
- Company means Tahcom AI, headquartered in Al-Madinah Al-Munawwarah, Kingdom of Saudi Arabia.
- Personal Data means any data, regardless of its source or form, that may directly or indirectly identify an individual.
- Service means any website, application, system, platform, or cybersecurity or technical solution provided by the Company.
- User means any natural or legal person who uses the Service.
- Usage Data means data collected automatically as a result of using the Service.
2. Personal Data We Collect
2.1 Personal Information
We may collect the following Personal Data when there is a legitimate business or regulatory need:
- Full name
- Email address
- Contact information
2.2 Technical and Usage Data
We may automatically collect certain technical information, including but not limited to:
- Internet Protocol (IP) address
- Browser type and operating system
- Date and time of access
- Login records and activity logs
- Device identifiers
Such data is collected strictly for operational, security, analytical, and service-improvement purposes.
3. Purposes of Processing Personal Data
Tahcom AI processes Personal Data for the following lawful purposes:
- Providing, operating, and maintaining the Service
- Managing user accounts and verifying identity
- Performing contractual and legal obligations
- Improving service quality and user experience
- Ensuring compliance with applicable laws and regulations
- Enhancing cybersecurity, preventing fraud, and detecting misuse
Personal Data shall not be processed for purposes other than those stated above unless permitted by law.
4. Legal Basis for Processing
The Company processes Personal Data based on one or more of the following legal grounds:
- Explicit consent of the Data Subject
- Compliance with a legal or regulatory obligation
- Performance of a contract to which the Data Subject is a party
- Legitimate interest, provided it does not prejudice the rights of the Data Subject
5. Data Sharing and Disclosure
Tahcom AI does not disclose or share Personal Data except in the following cases:
- With authorized service providers under binding confidentiality agreements
- When required by law or by a competent Saudi authority
- For security, regulatory, or judicial purposes
- With the explicit consent of the Data Subject
The Company does not sell Personal Data or use it for unauthorized marketing purposes.
6. Cross-Border Data Transfer
If it becomes necessary to transfer Personal Data outside the Kingdom of Saudi Arabia, Tahcom AI ensures that:
- Such transfer complies with PDPL requirements
- Appropriate technical and organizational safeguards are implemented
- The receiving entity provides an adequate level of data protection
7. Data Retention
Personal Data is retained only for the period necessary to fulfill the stated purposes or to meet regulatory requirements. Upon expiry of the retention period, the data will be:
- Securely deleted, or
- Anonymized in a manner that prevents identification of the Data Subject
8. Data Subject Rights
In accordance with the Saudi PDPL, you have the right to:
- Access your Personal Data
- Request correction or updating of inaccurate data
- Request deletion of Personal Data when the lawful purpose ceases
- Withdraw consent at any time, unless otherwise required by law
Requests may be submitted through the Company’s official communication channels.
9. Data Security
Tahcom AI is committed to protecting Personal Data by implementing appropriate cybersecurity and information security controls, including:
- Access control and identity management
- Encryption of sensitive data
- Continuous monitoring and incident response
- Compliance with NCA and CST cybersecurity frameworks
However, no method of electronic transmission or storage is completely secure.
10. Children’s Privacy
The Service is not intended for individuals under the age of 13, and the Company does not knowingly collect Personal Data from children.
11. Changes to This Privacy Policy
Tahcom AI reserves the right to update this Privacy Policy from time to time. Material changes will be communicated through the Company’s website or official channels, and the “Last Updated” date will be revised accordingly.
For questions, concerns, or requests related to this Privacy Policy or your Personal Data, please contact Tahcom AI through its official communication channels.