Privacy Policy – Digital Transformation Solutions Technologies Co. (DTST)
Effective Date: 4/22/2025
Last Updated: 4/22/2025
1. Introduction
Digital Transformation Solutions Technologies Co. ("DTST", "we", "our" or "the Company") is committed to protecting the privacy of users who visit our website www.dtst.sa. We comply with the Personal Data Protection Law issued in the Kingdom of Saudi Arabia and, where applicable, the General Data Protection Regulation (GDPR) of the European Union.
2. Scope
This Privacy Policy applies to all personal data collected through our website or via electronic communication channels. "Personal data" refers to any information relating to an identified or identifiable natural person, either directly or indirectly.
3. Data We Collect
We may collect and process the following categories of data:
- Identity Data: Full name, email address, phone number, job title
- Technical Data: IP address, browser type, device information, cookies
- Usage Data: Pages visited, visit duration, navigation patterns
- Correspondence Data: Emails, attachments, or messages you send us
4. Purpose of Processing
We process your personal data for the following purposes:
- Responding to your inquiries and requests
- Delivering technical and consultancy services
- Improving our website and digital performance
- Complying with legal and regulatory obligations
- Generating statistical, non-identifiable analytics
Legal Basis for Processing:
As required under PDPL and Article 6 of GDPR, processing is based on:
- Explicit consent
- Performance of a contract
- Legal obligation
- Legitimate interest that does not override your rights
5. Data Sharing
We do not sell or rent your personal data. Data may be shared only with:
- Authorized service providers (e.g., hosting, analytics, cybersecurity)
- Governmental or judicial authorities upon official request
- Internal company affiliates for operational purposes
No marketing communication is sent without your explicit prior consent.
6. International Data Transfers
We do not transfer personal data outside the Kingdom of Saudi Arabia unless appropriate safeguards are in place and explicit approval is obtained from the Saudi Data & AI Authority (SDAIA), as required by Article 29 of the PDPL.
For EU-origin data, we use mechanisms compliant with GDPR such as:
- Standard Contractual Clauses (SCCs)
- Adequacy Decisions by the European Commission
7. Data Retention
Personal data is retained only for as long as necessary to fulfill the purposes stated above or as required by applicable laws and regulations.
8. Your Rights
Under the PDPL (and GDPR where applicable), you may:
- Request access to your personal data
- Request rectification of inaccurate or incomplete data
- Request erasure where lawful and appropriate
- Withdraw consent (where processing is based on consent)
- Lodge a complaint with the Saudi Data and AI Authority (SDAIA)
or the relevant EU data protection authority
To exercise these rights, contact: Legal@dtst.sa
9. Data Security
We implement administrative, technical, and organizational measures to protect your data from unauthorized access, disclosure, alteration, or destruction.
10. Cookies
This website uses cookies to enhance user experience and analyze performance. You may disable cookies through your browser settings at any time.
11. Policy Updates
We reserve the right to update this Privacy Policy at any time. Any updates will be published on this page. Continued use of the site after changes are posted constitutes acceptance of the revised policy.
