FYNTRALINK
ع Book a consult

Legal — Fyntralink

Privacy Policy

We respect your privacy and are committed to protecting your personal data. This policy explains how Fyntralink collects, uses and protects your personal data when you visit our website or contact us, in full alignment with the Personal Data Protection Law (PDPL) of the Kingdom of Saudi Arabia.

Last updated: 21 June 2026

1. Who we are

Fyntralink is a Saudi technology firm headquartered in Riyadh, Kingdom of Saudi Arabia, specializing in cybersecurity, artificial intelligence and software engineering. For the purposes of the Personal Data Protection Law, Fyntralink acts as the "data controller" of the personal data collected through this website, and is responsible for determining the purposes and means of its processing.

2. The data we collect

We collect the minimum data necessary to serve you and respond to your requests. It falls into the following categories:

Contact-form data

Your name, email, company name, phone number and the content of your message — data you provide voluntarily when you contact us.

Technical data

IP address, browser type and user agent, referrer page and campaign parameters (UTM) — collected automatically for security and analytics purposes.

Essential cookies

We use only essential cookies required to operate the site, remember your language preference and protect forms. We do not use advertising or tracking cookies.

3. Purposes of processing

We process your personal data only for specific, legitimate purposes, namely:

  • Responding to your inquiries and requests and corresponding with you about them.
  • Delivering and managing our cybersecurity, AI and software-engineering services.
  • Securing our website and detecting and preventing fraud or misuse.
  • Complying with our statutory and legal obligations in the Kingdom of Saudi Arabia.

4. Legal basis & PDPL alignment

We process your data based on your consent when you complete the contact form, on the legitimate interest of securing our website, and on legal obligation where applicable. Fyntralink fully complies with the provisions of the Personal Data Protection Law (PDPL) of the Kingdom of Saudi Arabia and its Implementing Regulations, including the principles of purpose limitation, data minimization, transparency and accountability.

We do not sell your personal data. Ever.

We do not trade, rent or exchange your personal data with third parties for their own marketing purposes.

5. Data sharing

We may share your data with our contracted service providers — such as hosting, cloud-infrastructure and analytics providers — strictly to the extent necessary to operate our services. All such providers are bound by data-processing agreements that require them to keep your data confidential and secure and to use it solely on our instructions. We may also disclose your data where required by law or by an order from a competent authority in the Kingdom.

6. Retention period

We retain your personal data only for as long as necessary to fulfil the purposes described in this policy, or for any period required by law. As a general rule, we keep contact-form data for no longer than twenty-four (24) months from our last interaction with you, unless a contractual relationship arises that requires longer retention. When no longer needed, your data is securely deleted or anonymized.

7. Your rights under the PDPL

The Personal Data Protection Law of the Kingdom grants you a set of rights over your personal data:

Right to be informed & access

To know your data is processed, access it, and obtain a copy.

Right to correction

To request correction of inaccurate or completion of incomplete data.

Right to deletion

To request deletion of your data once it is no longer needed by law.

Objection & withdrawal of consent

To object to processing or withdraw your consent at any time.

8. Security measures

As a cybersecurity firm, we apply appropriate technical and organizational controls to protect your data against unauthorized access, disclosure, alteration or destruction. These controls include encrypted communication over HTTPS, least-privilege access control, continuous monitoring and periodic security reviews. While no transmission of data over the internet can be guaranteed fully secure, we adhere to professional best practices to minimize risk.

9. International transfers

We prefer to process and store data within the Kingdom of Saudi Arabia. Where certain of our services or providers require transferring your data outside the Kingdom, we do so only within the safeguards permitted by the Personal Data Protection Law and its Implementing Regulations, ensuring the receiving party provides an adequate level of protection for your data.

10. How to exercise your rights

To exercise any of the rights above, or for any privacy-related query, please contact us by email. We will respond to your request within the timeframes set by law, and may ask to verify your identity before acting on the request to protect your data.

Data protection contact

info@fyntralink.com

11. Changes to this policy

We may update this policy from time to time to reflect changes in our practices or in regulatory requirements. We publish the updated version on this page along with a revised "Last updated" date at the top. We encourage you to review this page periodically for the latest version.

Have a privacy question?

Our team is ready to answer any query about your data.

Contact us Terms of Use