0536890919 info@fyntralink.com
Fyntralink
العربية EN

Privacy Policy (PDPL-Aligned)

This policy is prepared in line with the Saudi Personal Data Protection Law (PDPL), issued by Royal Decree No. (M/19) and amended by Royal Decree No. (M/148), together with its implementing regulations. It explains how we collect, use, and protect personal data.

Data Controller and Scope

This policy applies to website visitors, clients, partners, and entities that communicate with us. Fyntralink acts as a data controller when determining the purposes and means of processing.

  • Contact requests, digital forms, and service requests.
  • Contractual relationships and related communications/records.

Personal Data We May Collect

We follow data minimization and only collect what is necessary for a specific and legitimate purpose.

  • Identity and contact data such as name, email, phone number, and job title.
  • Organization/company data required for contracting and service delivery.
  • Technical data such as IP address, browser type, and security-related usage logs.
  • Messages and request content submitted through the website.

Processing Purposes and Legal Basis under PDPL

Processing is carried out only when a valid legal basis exists under PDPL and only to the extent required for the purpose.

  • Responding to inquiries and providing requested proposals/services.
  • Performing contractual obligations and pre-contractual steps.
  • Complying with legal/regulatory obligations and required record keeping.
  • Improving platform security and preventing misuse/fraud.
  • Sending marketing content only with explicit consent and withdrawal option.

Disclosure and Third-Party Processing

Data may be shared with authorized processors for technical and operational services under binding agreements covering confidentiality, security, and processing limits.

  • We do not sell personal data to any third party.
  • Disclosure may occur where legally required or requested by a competent authority.

Transfers Outside the Kingdom

Cross-border transfers occur only when legal conditions are met and appropriate safeguards are applied under PDPL and its regulations.

  • Assessing transfer necessity and purpose.
  • Checking destination protection levels and applying contractual safeguards where needed.

Retention and Secure Destruction

Data is retained only for the period required by purpose or law, then securely destroyed or anonymized.

  • Periodic retention reviews to minimize unnecessary storage.

Data Subject Rights under PDPL

We enable data subjects to exercise their statutory rights under PDPL.

  • Right to be informed about collection and processing purposes.
  • Right to access personal data and request a copy.
  • Right to request correction, update, or completion.
  • Right to request destruction when legal purpose no longer exists.
  • Right to withdraw consent where processing relies on consent.
  • Right to file a complaint with the competent authority.

Submitting Privacy Requests and Complaints

You may submit privacy requests through the official contact page or via info@fyntralink.com. We may request additional details to verify identity before processing a request.

  • Please specify request type and related data to speed processing.
  • If unresolved, you may escalate to the competent authority.

Data Security and Policy Updates

We apply appropriate technical and organizational controls to protect data from unauthorized access, loss, or disclosure. This policy may be updated when needed, and the latest update date is shown at the bottom of the page.

Last updated: 2026-02-17