This Privacy Policy (the “Privacy Policy”) has been developed in accordance with the Personal Data Protection Law of the Kingdom of Saudi Arabia (PDPL), its Implementing Regulations, and other applicable laws and regulations governing the protection and processing of personal data in the Kingdom of Saudi Arabia.

1. Definitions

1.1. Automated Processing of Personal Data – processing of personal data using information technology systems and software tools.
1.2. Personal Data – any information relating to an identified or identifiable natural person (“Data Subject”), directly or indirectly.
1.3. Processing of Personal Data – any operation or set of operations performed on personal data, whether automated or not, including collection, recording, organization, storage, modification, retrieval, use, disclosure, transfer, restriction, erasure, or destruction.
1.4. Website – the Taybix website, including all related domains and subdomains, providing information about Taybix services and products.
1.5. Website User – any natural person who accesses the Website and provides personal data to Taybix.
1.6. Website Administration – authorized persons responsible for managing the Website and determining purposes and methods of personal data processing.
1.7. Company / Data Controller – Taybix, acting as the Data Controller in accordance with the Personal Data Protection Law of the Kingdom of Saudi Arabia (PDPL).

2. General Provisions

2.1. This Privacy Policy establishes the procedures for collection, protection, storage, processing, and transfer of personal data of Website Users.
2.2. This Privacy Policy does not apply to third-party websites. Taybix is not responsible for privacy practices of external resources.
2.3. Personal data may include:

• full name;
• phone number;
• email address;
• any information voluntarily provided by the User.

Automatically collected data may include:

• IP address;
• cookies;
• browser type;
• device and operating system data;
• access date and time;
• visited pages.

Disabling cookies may limit access to certain Website features.
2.4. Taybix collects personal data only directly from Users.
2.5. Purposes of Processing:

• user identification;
• contract execution;
• communication with users;
• marketing communications (with consent);
• customer and technical support.

2.6. Users have the right to access their personal data and request copies.
2.7. Taybix implements technical and organizational security measures.
2.8. Legal basis for processing includes:

• user consent;
• contractual necessity;
• legal obligations under Saudi law.

3. Processing, Storage, and Transfer

3.1. Processing is conducted strictly for stated purposes.
3.2. Processing may be automated or manual.
3.3. Data is stored in electronic systems and secure backups.
3.4. Data may also be stored in physical form where legally required.
3.5. Security measures prevent unauthorized access.
3.6. Only authorized personnel may access data under confidentiality obligations.
3.7. Access rights are internally regulated.
3.8. Data may be shared with third parties only:

• to fulfill services;
• to comply with legal obligations.

3.9. Disclosure is limited to minimum necessary scope.
3.10. Recipients must use data strictly for intended purposes.
3.11. All data transfers are logged.
3.12. Taybix may retain log files for security and legal protection.

4. Security of Physical Locations

4.1. Data processing facilities are protected against unauthorized access.
4.2. Facilities comply with applicable safety and security standards.

5. Rights and Obligations of Taybix

5.1. Taybix determines mandatory data requirements.
5.2. Taybix does not verify accuracy of user-provided data.
5.3. Taybix is not responsible for voluntary data sharing by users.
5.4. Taybix does not process sensitive data (political, religious, private life).
5.5. Taybix ensures data protection at its own expense.
5.6. Taybix implements:

• appointment of a Data Protection Officer (if required);
• internal policies;
• legal, technical, and organizational safeguards;
• regular compliance audits;
• staff training.

6. User Rights

Users may:

• access their personal data;
• request correction or deletion;
• restrict processing;
• withdraw consent;
• file complaints with the Saudi Data Authority (SDAIA).

Users may contact Taybix at: contact@taybix.com

7. Data Blocking and Deletion

7.1. Unlawful processing is immediately blocked.
7.2. Inaccurate data is corrected upon verification.
7.3. Unlawfully processed data is deleted within reasonable time.
7.4. Data breaches are reported to Saudi authorities as required by PDPL.
7.5. Data is deleted:

• after purpose is achieved;
• upon consent withdrawal;
• upon user request unless retention is legally required.

7.6. Retention periods comply with Saudi regulations.
7.7. Destruction methods:

• physical shredding;
• secure digital erasure.

8. Liability

Any violation of personal data laws may result in civil, administrative, or criminal liability under Saudi law.

9. Amendments

9.1. Taybix may amend this Privacy Policy at any time.
9.2. Current version is available on the Taybix Website.

Personal Data of Visitors to the Taybix Website on the Internet