Login with Social Profiles

Facebook Google

Existing Account?

Forgot Password?
Privacy, Data Protection, and Security Policy - Manassat Real Estate Company

Privacy, Data Protection, and Security Policy

Menassat Real Estate - Privacy, Data Protection, and Security Policy

1. Introduction

Menassat Real Estate Appraisal Company (“Menassat,” “we,” “us,” or “our”) is committed to protecting the privacy and security of personal data in compliance with the Saudi Personal Data Protection Law (PDPL) and applicable cybersecurity standards.
This policy explains how we collect, process, use, store, and protect personal data when providing our real estate appraisal and related services.

2. Scope

This policy applies to all data collected or processed by Menassat through its website, web application, and professional services provided to clients, including financial institutions and real estate partners within the Kingdom of Saudi Arabia (KSA).

3. Legal Basis for Processing

All processing of personal data is conducted lawfully under the PDPL.
We process data based on one or more of the following legal grounds:

  • The processing is necessary for the performance of a contract or service agreement.

  • The data subject has given explicit consent.

  • The processing is required for compliance with legal obligations under Saudi law.

4. Data We Collect

We may collect the following categories of data:

  • Identification Data: Name, ID number, address, contact details.

  • Professional and Property Data: Property details, valuation information, location, and related documentation.

  • Technical Data: IP address, device identifiers, browser type, and access logs (for security and audit purposes).

  • Communications: Emails, chat records, and inquiries submitted via our website or systems.

We do not collect sensitive data (such as biometric or genetic information) unless explicitly required by law or client contract.

5. Purpose of Processing

Personal data is collected and processed only for:

  • Providing real estate appraisal services.

  • Managing client accounts and contracts.

  • Verifying identity and processing authorized transactions.

  • Complying with regulatory, auditing, and reporting obligations.

  • Maintaining system security, fraud prevention, and service improvement.

We do not sell, share, or use personal data for marketing, profiling, or behavioral advertising.

6. Data Sharing and Third Parties

  • Menassat does not share personal data with third parties except:

    • When required by law or government authorities.

    • With authorized service providers bound by confidentiality and data protection agreements.

  • All data is hosted securely within the Kingdom of Saudi Arabia.

  • No personal data is transferred outside KSA unless explicitly approved and compliant with PDPL requirements.

7. Data Retention and Deletion

We retain data only for as long as necessary to fulfill the purposes stated in this policy or as required by applicable laws.
After the retention period, personal data is securely deleted or anonymized using certified destruction methods.

8. Security Measures

Menassat implements comprehensive technical and organizational security measures to ensure the confidentiality, integrity, and availability of personal data, including:

  • Encryption of data at rest and in transit (AES-256 / TLS).

  • Multi-factor authentication and role-based access controls.

  • Network firewalls, intrusion detection, and anti-malware systems.

  • Periodic vulnerability assessments and penetration tests.

  • Continuous monitoring and restricted access to data centers.

  • Employee confidentiality and data protection training.

9. Data Subject Rights

In accordance with PDPL, individuals have the right to:

  • Access and obtain a copy of their personal data.

  • Request correction or deletion of inaccurate data.

  • Withdraw consent where processing is based on consent.

  • Object to unlawful processing or automated decision-making.

Requests can be submitted to our Data Protection Officer at:
📧 [email protected]

10. Data Breach Response

Menassat has an internal Data Breach Response Procedure designed to:

  • Immediately contain and assess any incident.

  • Notify affected parties and authorities as required by PDPL within the prescribed timeframe.

  • Investigate and implement corrective actions.

  • Maintain detailed incident logs for accountability and compliance.

11. Business Continuity and Disaster Recovery

Our systems and data backups are maintained in secure, redundant environments to ensure service continuity in the event of technical failures, disasters, or cybersecurity incidents.

12. Compliance and Audit

Menassat’s data protection framework aligns with:

  • Saudi PDPL issued by SDAIA.

  • NCA Cybersecurity Controls (ECC & CCC).

  • ISO/IEC 27001 information security management principles.

We periodically review and audit compliance to ensure all standards are maintained.

13. Cookies and Website Tracking

Our website uses only essential cookies necessary for operation and analytics to enhance user experience.
Users can manage or disable cookies through their browser settings.

14. Updates to This Policy

We may update this policy from time to time to reflect regulatory or operational changes.
The latest version will always be available on our website, with the “Last Updated” date indicated.

15. Contact Information

If you have questions about this policy or your data rights, contact:
Data Protection Officer – Menassat Real Estate Appraisal Company
📧 [email protected]
📍 Riyadh, Kingdom of Saudi Arabia
🌐 www.gomenassat.com