Privacy Policy
How we handle your data
Privacy is core to how Wasla is built. This page summarises what data we collect, how we use it, and how we protect it. The full policy is available on request.
What we collect
- Account data: business name, branches, team member names and phone numbers.
- Operational data: orders, inventory, invoices, reports, cashier activity.
- Customer data: phone numbers and tags you assign in your customer directory.
- Technical data: IP address, device type, error logs — to run the service and improve performance.
How we use it
- Running the platform: syncing between devices and branches, backups, restore.
- Regulatory compliance: submitting e-invoices to the Fatoora platform per ZATCA requirements.
- Support: helping your team when you raise a ticket.
- Improvement: aggregated, anonymised analytics to understand how the product is used.
Data sharing
We do not sell your data and do not share it with advertisers. We share only with: certified infrastructure providers we use to run the service, ZATCA when issuing e-invoices, and government bodies when legally required.
Retention and deletion
Account data is retained for the duration of your subscription. On termination, you can export your data within 30 days, after which it is deleted from active systems in line with statutory retention rules.
Security
Data is encrypted in transit and at rest. Access is role-based and fine-grained, and every action in the system is recorded in the audit log. Our servers run on internationally certified infrastructure providers, with daily backups.
Your rights
You have the right to access, correct, export, or request deletion of your data, subject to applicable law. For privacy requests, email [email protected].
Updates
We may update this policy from time to time. Material changes will be notified by email or in-app notice in good time before they take effect.