Privacy

[MadfoatCom for epayments KSA for information technology] (“we”, “our”, or “us”) We are committed to protecting the privacy, confidentiality, and security of our customers’ personal information in compliance with the Saudi Personal Data Protection Law (PDPL), SAMA regulations, and other applicable laws. This Privacy Policy explains how we collect, use, store, share, and protect personal data when you use our website, services, and digital platforms.

1. Data We Collect

We may collect the following categories of personal data:

  • Identification Information: full name, national ID/iqama/passport details, date of birth.
  • Contact Information: phone number, email address, physical address.
  • Financial Information: bank account details, payment history, billing records.
  • Technical Information: IP address, browser type, device identifiers, cookies, and usage data.
  • Transaction Data: payment instructions, amounts, dates, and beneficiaries.

2. Purpose of Data Collection

We collect and process your personal data for the following purposes:

  • To provide, operate, and improve our payment services.
  • To verify your identity and prevent fraud.
  • To comply with SAMA, Saudi Payments, and regulatory obligations (e.g., AML, CTF, KYC requirements).
  • To process and complete your payment transactions.
  • To communicate with you regarding your account, services, or inquiries.
  • For auditing, reporting, and compliance purposes.
  • To enhance your user experience on our website.

3. Lawful Basis of Processing

We process your personal data on the following bases:

  • Legal obligation (compliance with SAMA and PDPL).
  • Contractual necessity (to provide services you request).
  • Legitimate interests (ensuring service security and fraud prevention).
  • Consent (when required, e.g., for marketing communications).

4. Data Sharing & Disclosure

We do not sell or rent your personal data. However, we may share it with:

  • Regulatory authorities (SAMA, Saudi Payments, etc.) where legally required.
  • Authorized third-party service providers (IT support, fraud prevention, payment processors).
  • Partner banks and billers for payment settlement purposes.
  • Law enforcement or government authorities when required by law.

All third parties are bound by strict confidentiality and data protection agreements.

5. Data Storage & Retention

  • Data is stored securely within the Kingdom of Saudi Arabia (unless otherwise permitted by SAMA).
  • We retain personal data only as long as necessary to fulfill the purposes stated or as required by law/regulation.

6. Data Security

We apply industry-standard security controls in line with SAMA Cybersecurity Framework and PDPL, including:

  • Data encryption in transit and at rest.
  • Access controls and authentication.
  • Regular audits, monitoring, and incident response procedures.
  • Secure hosting and network protection.

7. Your Rights as a Data Subject

Under the PDPL, you have the right to:

  • Access your personal data.
  • Request correction or updating of your data.
  • Request deletion where applicable.
  • Withdraw consent for optional processing (e.g., marketing).
  • File a complaint with the Saudi Data & Artificial Intelligence Authority (SDAIA) or SAMA.

Requests can be submitted by contacting us at [Insert Contact Email/Phone].

8. Cookies & Digital Tracking

Our website may use cookies and similar technologies to improve user experience and analyze performance. You can control cookie settings through your browser.

9. Updates to This Policy

We may update this Privacy Policy to reflect legal, regulatory, or operational changes. Any updates will be published on this page with the effective date.

10. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or your personal data, please contact us: ([email protected])

Quick Links
Get In Touch

Alyasmin, Anas Ibn Malik 13325 – Riyadh, Saudi Arabia

Working hours “ Sunday – Thursday from 9:00-16:00 “

© 2026 All Rights Reserved.