DAZZ Privacy Policy 

Last Updated: 29 November 2025

This Privacy Policy (“Policy”) governs the collection, processing, use, disclosure, retention, and protection of Personal Data by DAZZ (“DAZZ”, “Company”, “we”, “us”, or “our”). This Policy is issued in accordance with the Saudi Personal Data Protection Law (PDPL) and its Executive Regulations. By accessing or using DAZZ’s website or services, you acknowledge that you have read, understood, and agreed to be bound by this Policy.

1. Definitions

For purposes of this Policy:

  • “Personal Data” means any data that identifies or may identify an individual, directly or indirectly, as defined under PDPL.

  • “Processing” means any operation performed on Personal Data including collection, recording, retention, use, disclosure, modification, or deletion.

  • “Data Subject” means any identifiable individual whose Personal Data is processed by DAZZ.

  • “Controller” means DAZZ in its capacity as the entity that determines the purpose and means of processing.

  • “DPO” means DAZZ’s designated Data Protection Officer.

2. Scope of Application

This Policy applies to all Personal Data processed by DAZZ relating to:

  • Users of the DAZZ website

  • Merchants and business representatives

  • Delivery recipients and senders

  • Delivery partners, contractors, and drivers

  • Any individual located in the Kingdom of Saudi Arabia whose data is processed by DAZZ

This Policy applies to data processed within the Kingdom or related to individuals within the Kingdom.

3. Legal Basis for Processing

DAZZ processes Personal Data only when a lawful basis exists under PDPL, including:

  • Explicit consent

  • Performance of a service or contractual obligation

  • Compliance with legal or regulatory obligations

  • Legitimate interests that do not prejudice the rights of Data Subjects

  • Protection of vital interests

DAZZ does not process Personal Data without a lawful basis.

4. Categories of Personal Data Collected

DAZZ may collect the following categories:

4.1 Data Provided Voluntarily

  • Name

  • Contact information (phone, email)

  • Store or business details

  • Delivery and shipping information

  • Messages and submitted forms

4.2 Data Collected Automatically

  • IP address

  • Device identifiers

  • Browser type

  • Access dates and times

  • Cookies and tracking technologies

4.3 Operational & Logistics Data

  • Delivery addresses

  • Location data (if consented)

  • Shipment history and timestamps

  • Driver and customer notes

5. Purpose of Processing

DAZZ processes Personal Data for:

  • Providing, operating, and improving delivery, pickup, storage, and logistics services

  • Managing merchant and customer accounts

  • Communicating delivery updates and notifications

  • Customer support and dispute handling

  • Identity verification and fraud prevention

  • Analytics and operational optimization

  • Compliance with applicable laws and regulations

We do not use Personal Data for marketing unless explicit consent is obtained.

6. Disclosure of Personal Data

DAZZ may disclose data only to:

6.1 Authorized Service Providers

Technical support, cloud hosting, analytics, communication gateways, and operational tools.

6.2 Delivery Partners

Limited information required to complete a delivery.

6.3 Governmental Authorities

When required by law, judicial order, or regulatory request.

6.4 Third Parties Approved by Data Subject

As explicitly authorized by the Data Subject.

DAZZ does not sell or lease Personal Data.

7. International Transfer of Personal Data

DAZZ may transfer Personal Data outside Saudi Arabia only when:

  • The destination jurisdiction ensures adequate protection;

  • Appropriate contractual safeguards are in place;

  • Transfer is necessary to fulfill a service requested by the Data Subject;

  • Explicit consent is obtained when required.

All international transfers comply with PDPL and SDAIA guidelines.

8. Data Security Measures

DAZZ implements robust administrative, technical, and organizational controls including:

  • Encryption

  • Secure network and server protocols

  • Access control and authentication

  • Continuous monitoring and threat detection

  • Regular audits and compliance reviews

Absolute data security cannot be guaranteed despite best practices.

9. Data Retention

DAZZ retains Personal Data for as long as necessary to:

  • Provide services

  • Fulfill legal or regulatory obligations

  • Resolve disputes

  • Support operational needs

After the retention need ends, the data is securely deleted or anonymized.

(You chose “general retention — as needed”, so this wording reflects that.)

10. Rights of Data Subjects

Under PDPL, Data Subjects have the following rights:

  • Access to their Personal Data

  • Request correction of inaccurate data

  • Request deletion where permissible

  • Withdraw consent at any time

  • Object to processing in specific cases

  • Request a copy of their Personal Data

  • Be informed of the purpose of processing and sharing activities

Requests may be submitted via the contact details below.

11. Data Protection Officer (DPO)

DAZZ has appointed a Data Protection Officer to oversee compliance with PDPL.

Data Protection Officer – DAZZ
📧 Email: privacy@dazz.sa
📞 Phone: +966 11 500 6279

12. Cookies and Tracking Tools

Our website uses cookies to:

  • Improve performance

  • Remember user preferences

  • Conduct analytics

Users may manage or disable cookies through browser settings.

13. Children’s Data

DAZZ does not knowingly collect Personal Data from individuals under the age of 13.
If such data is identified, it will be deleted immediately.

14. Amendments to this Policy

DAZZ reserves the right to amend this Policy at any time.
Updates will be published with a revised “Last Updated” date and become effective upon posting.

15. Contact Information

For privacy inquiries or PDPL-related requests:

DAZZ – Data Protection and Compliance Office
📧 Email: privacy@dazz.sa
📞 Phone: +966 11 500 6279
🌐 Website: https://dazz.sa