Cartibuy Privacy Policy

Last Updated: 01-04-2024

Welcome to CartiBuy.sa (the "Website" or "Service"). CartiBuy.sa is committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy outlines how we collect, use, disclose, and safeguard your information when you use our website and services.

1. Information We Collect

a. Personal Information

We may collect personal information from you when you register on our website, place an order, subscribe to our newsletter, respond to a survey, or fill out a form. This information may include, but is not limited to:

Full Name

Contact Information (email address, phone number, shipping address)

Payment Information (credit/debit card details)

Account Username and Password

b. Non-Personal Information

We also collect non-personal information such as your IP address, browser type, and browsing patterns, which helps us enhance your experience on CartiBuy.sa and improve our services.

2. How We Use Your Information

We collect and use your information for various purposes to provide and improve our services. The information we collect may be used in the following ways:

a. Order Processing and Fulfilment

Purpose: To process and fulfill your orders, including verifying your identity, managing payments, and delivering products.

Data Used: Full Name, Contact Information, Payment Information, Shipping Address.

b. Personalization of User Experience

Purpose: To enhance your experience on CartiBuy.sa by providing personalized content, product recommendations, and tailored promotions.

Data Used: Browsing History, Purchase History, Preferences

c. Website and Service Improvement

Purpose: To analyze and improve the functionality and performance of our website and services.

Data Used: Non-personal Information (e.g., IP address, browser type), User Feedback, and Survey Responses.

d. Communication and Customer Support

Purpose: To communicate with you regarding your orders, respond to inquiries, provide customer support, and send important updates.

Data Used: Contact Information, Order Information, Communication History.

e. Marketing and Promotions

Purpose: To send you marketing communications, promotions, and newsletters based on your preferences and purchase history. Marketing and Promotions

Data Used: Contact Information, Order Information, Communication History.

f. Legal Compliance

Purpose: To comply with legal obligations, such as tax regulations, fraud prevention, and responding to legal requests

Data Used: Various types of personal information as required by applicable laws

g. Security Measures

Purpose: To maintain the security and integrity of our platform, prevent fraud, and protect against unauthorized access.

Data Used: User Account Information, Security Logs.

h. Research and Analytics

Purpose:To conduct research and analytics to better understand our customer base, market trends, and improve our business strategies

Data Used: Aggregated and Anonymized Data

i. Personal Account Management

Purpose:To manage your personal account, including updating account information, preferences, and password resets.

Data Used: Account Information, Contact Information.

j. Third-Party Partnerships

Purpose:To collaborate with trusted third parties, including our parent company Modern Services for Information Technology , for joint marketing efforts and service enhancements.

Data Used: Aggregated and Anonymized Data.

3. Information Sharing

We do not sell, trade, or otherwise transfer your personal information to third parties without your consent, except for the purpose of delivering the purchased product or service requestedWe may share non-personal information with trusted third parties, including our parent company Modern Services for Information Technology, to analyze usage patterns, improve our services, and for marketing purposes. However, this information is anonymized and does not identify individuals.

4. How We Store Your Information

We take the security and confidentiality of your information seriously. Here's how we store and safeguard your data:

a. Secure Data Transmission

We use industry-standard encryption protocols (such as HTTPS) to ensure the secure transmission of data between your device and our servers during interactions with the Platform.

b. Secure Servers

Your information is stored on secure servers with restricted access to authorized personnel only.

c. Data Segmentation

Personal and sensitive information is stored separately and securely from non-personal data.

d. Limited Access

Access to user data is restricted to employees who require it for specific tasks, such as customer support or system maintenance. Each employee with access is trained on data protection policies.

e. Regular Security Audits

We conduct regular security audits to identify and address potential vulnerabilities in our systems.

f. Data Backup

Regular backups are performed to prevent data loss in case of unforeseen events. Backup systems adhere to the same security standards as our primary systems.

g. Compliance with Industry Standards

Our data storage practices comply with industry standards and best practices, including those recommended for e-commerce platforms.

h. Retention Policies

We retain your information only for as long as necessary to fulfill the purposes outlined in this Privacy Policy or as required by applicable laws. Once the information is no longer needed, it is securely deleted.

i. User Authentication

Access to your account is secured through robust authentication mechanisms, such as passwords and multi-factor authentication, to prevent unauthorized access.

j. Regular Security Training

Our staff undergoes regular training on security practices and the importance of protecting user data.

k. Incident Response Plan

In the event of a data breach or security incident, we have a well-defined incident response plan in place to promptly address and mitigate the impact.

l. Monitoring and Logging

We employ monitoring and logging systems to detect and respond to any unusual or suspicious activities related to user data.

m. Third-Party Security

When we engage with third-party service providers, we ensure that they adhere to stringent security standards and have robust data protection measures in place.

n. Legal Compliance

Our data storage practices comply with relevant data protection laws and regulations in Saudi Arabia, and we stay informed about any changes in legal requirements.

o. Continuous Improvement

We continuously evaluate and enhance our data storage practices to adapt to evolving security threats and technological advancements.

5. Security Measures

We prioritize the security of your information and employ robust measures to safeguard it. Our platform utilizes industry-standard encryption protocols, including Secure Sockets Layer (SSL), to ensure secure data transmission. Information is stored on secure servers with restricted access, and personal and sensitive data is segmented for added protection. Access controls, regular security audits, and data encryption at rest contribute to a secure environment. We conduct continuous monitoring, logging, and assessments to detect and respond to potential threats. While we implement stringent security measures,it's important to note that no method of transmission or storage is entirely secure. We continuously strive to enhance our security practices and stay abreast of industry advancements.

Disclaimer:

Although we will do our best to protect your Information, we cannot guarantee the security of your Information transmitted to our Platform, and any transmission is at your own risk.

6. What Information Can I Access?

At CartiBuy.sa, we believe in transparency and strive to provide you with control over your personal information. As a user of our platform, you have the right to access certain information about yourself. Here's an overview of the types of information you can access:

a. Account Information:

To process and fulfill your orders, including verifying your identity, managing payments, and delivering products.

b. Order History:

You have the ability to view and track your order history, including details of past purchases, order status, and delivery information.

c. Preferences:

Access and manage your communication preferences, allowing you to control the types of notifications and marketing communications you receive from us.

d. Personal Settings:

Customize your personal settings, such as language preferences and other account-related configurations.

e. Personal Information:

• Review and edit certain personal information provided during account registration, ensuring its accuracy and relevance.

7. Are Children Allowed to Use CartiBuy Services?

CartiBuy.sa is committed to protecting the privacy and safety of all users, including children. To use our services, individuals must be of legal age or have obtained the necessary consent from a parent or legal guardian.

8. Links To The Other Sites

Our policy discloses the privacy practices for our own web site only. Our site provides links to other websites also that are beyond our control. We shall in no way be responsible in way for your use of such sites.5.

9. Changes to Our Privacy Policy

As CartiBuy.sa evolves to enhance user experience and comply with applicable laws, we may update our Privacy Policy from time to time. We encourage you to review this policy periodically to stay informed about how we collect, use, and protect your information. When we make material changes to this Privacy Policy, we will notify you through prominent means, such as via email or a notice on our website, before the changes take effect.

10. How You Can Contact Us

At CartiBuy.sa, we value open communication with our users. If you have any questions, concerns, or inquiries regarding our services, privacy practices, or any other matter, please contact us at [email protected] with a thorough description, and we will try to resolve it.

Mr. ALOWADHI HATIM AHMAD (“Grievance Officer”).Ph: 050 9704612

Email:[email protected]