Privacy Policy

Last Updated: 19 December 2025 | Effective Date: 19 December 2025

1. Introduction

At Dari App, we are committed to protecting your privacy and ensuring that your personal data is handled in a transparent, secure, and lawful manner. This Privacy Policy explains how we collect, use, share, and safeguard your information when you use our mobile application and related services.

This policy is designed to comply with applicable data protection laws, including the General Data Protection Regulation (GDPR) and the Saudi Arabian Personal Data Protection Law (PDPL).

2. Scope of Application

This policy applies to all services and features available through the Dari App.

3. Data Controller Information

For the purposes of applicable data protection laws, including the GDPR and the Saudi Arabian Personal Data Protection Law (PDPL), Dari App acts as the Data Controller with respect to the personal data collected through the application.

The Data Controller is responsible for determining the purposes and means of processing your personal data and for ensuring that such processing is carried out in compliance with applicable laws and regulations.

If required by law, Dari App may appoint a Data Protection Officer (DPO) or a designated privacy representative. Any such appointment and relevant contact details will be communicated through this Privacy Policy or via the application.

4. Information We Collect

a. Personal Data

  • Full name

  • Mobile phone number

  • Email address

  • Delivery address (street, city, postal code)

b. Technical Data

  • IP address

  • Device type (smartphone, tablet, etc.)

  • Operating system and version

  • Application version

c. Location Data

  • Real-time location when placing an order

  • Background location history to improve delivery accuracy

d. Usage Data

  • App pages or screens you visit

  • Session duration and browsing behavior

  • Error logs and crash reports

e. Payment Data

  • Credit/debit card details or digital wallet information (applicable when electronic payment is selected)

  • Transaction records and digital receipts

5. How We Collect Data

  • During registration:

    Personal data is collected through the sign-up form.

  • When placing an order:

    Technical data, location data, and order details are collected automatically.

  • Through cookies and similar technologies:

    Used to collect usage data and enhance user experience.

6. How We Use Your Data and Legal Basis

We process your personal data in accordance with applicable data protection laws and based on one or more of the following legal grounds:

  • Performance of a contract:

    To provide and fulfill services you request through the app.

  • Consent:

    For marketing communications and optional features.

  • Legal obligation:

    To comply with applicable laws and regulatory requirements.

  • Legitimate interests:

    To improve our services, prevent fraud, and ensure platform security.

We use your data strictly for the following purposes:

  • Service delivery:

    To prepare and fulfill orders accurately.

  • User communication:

    Order status updates, notifications, and promotional messages (with your consent).

  • Customer support:

    To respond to inquiries and resolve issues.

  • Analytics and improvement:

    To analyze usage patterns and improve app performance and features.

  • Legal compliance:

    To comply with applicable laws and regulatory requirements.

7. Sharing Data with Third Parties and Cross-Border Transfers

Your personal data is shared only in the following cases:

  • Delivery partners:

    Delivery address and order details to complete delivery.

  • Payment service providers:

    Limited payment data for authentication and processing through authorized providers such as Stripe or PayPal.

  • Analytics providers:

    Aggregated and non-identifiable data through services such as Google Analytics to improve the app.

  • Legal authorities:

    When required by law, court orders, or governmental investigations.

Where personal data is transferred outside the Kingdom of Saudi Arabia or the European Economic Area, we ensure that such transfers are conducted in compliance with PDPL and GDPR requirements, using appropriate safeguards such as approved contractual clauses or equivalent protection mechanisms.

Important note: We do not sell your personal data to any third party.

8. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes outlined in this policy, or as required under applicable laws, including GDPR and PDPL.

Your personal data will be securely deleted or anonymized once it is no longer required. If you request account deletion, your personal data will be deleted in accordance with our data deletion policy within 30 days, unless a longer retention period is required by law.

9. Data Security

We implement high-standard technical and organizational security measures, including:

  • TLS/SSL encryption
  • Firewalls and strict access controls
  • Regular security audits and penetration testing
  • All employees are required to sign confidentiality and non-disclosure agreements.

10. Your Rights as a User

In accordance with GDPR and the Saudi PDPL, you have the right to:

  • Access:
    Request confirmation and a copy of your personal data.
  • Correction:
    Update or correct inaccurate or incomplete information.
  • Deletion:
    Request deletion of your account and personal data ("right to erasure"), subject to legal obligations.
  • Restriction:
    Request restriction of processing in certain circumstances.
  • Objection:
    Object to data processing for direct marketing or based on legitimate interests.
  • Data portability:
    Receive your data in a structured, commonly used, machine-readable format.
  • Withdraw consent:
    Withdraw your consent at any time where processing is based on consent.

To exercise any of these rights, please contact us at:

Email: support@dariapp.com

11. Children's Privacy

The Dari App is intended for users aged 18 years and above. We do not knowingly collect personal data from minors.

12. Regulatory Compliance and Changes to This Privacy Policy

We comply with the requirements of the EU General Data Protection Regulation (GDPR) and the Saudi Arabian Personal Data Protection Law (PDPL).

We reserve the right to update this Privacy Policy from time to time to reflect legal, technical, or operational changes. You will be notified of any material changes through the app or via email prior to the changes taking effect.