Contact us
WhatsApp
Privacy Policy

Privacy Policy

We take your privacy seriously. Learn how we collect, use, and protect your personal information across all Digital Marketing Trade services.

Last updated: March 2026Complies with GDPR, CCPA, and international data protection standards

1. Information We Collect

Information You Provide

  • Contact form data: name, email, phone, company name, project description
  • Service agreements: business address, registration details, tax identification numbers
  • Communications: email messages, chat transcripts, meeting notes and recordings
  • Payment information: processed through secure PCI DSS compliant gateways — no full card numbers stored

Automatically Collected Information

  • Website analytics: IP address, device type, browser, pages visited, session duration
  • Cookies and tracking: preference cookies, analytics cookies via Google Analytics, advertising pixels
  • Server logs: access timestamps, error messages, performance metrics, security events

Information from Third Parties

  • Social media: public profile information if you connect social accounts
  • Payment processors: transaction records and payment verification status
  • Analytics providers: aggregated traffic and demographic data

2. How We Use Your Information

Service Delivery

  • Communicating with you about projects and services
  • Creating and delivering project deliverables
  • Processing payments and generating invoices
  • Sending project updates and performance reports

Marketing and Outreach

  • Responding to inquiries and sending quotes
  • Sending marketing emails only if you opted in
  • Showcasing projects as case studies with your written permission
  • Retargeting ads based on website visits

Security and Legal Compliance

  • Detecting and preventing fraud and unauthorized access
  • Fulfilling legal obligations and maintaining tax and accounting records
  • Enforcing our terms and agreements
  • Responding to legal requests from authorities

3. Data Security

We implement comprehensive technical and administrative security measures to protect your information at every layer.

Technical Safeguards

  • SSL and TLS encryption for all website connections
  • Encrypted storage for sensitive data at rest
  • Role-based access restrictions and mandatory two-factor authentication
  • PCI DSS compliant payment processing — full card numbers are never stored
  • Firewalls, intrusion detection systems, and DDoS protection
  • Regular security audits and penetration testing

Security Breach Response

If a security breach occurs, we will investigate immediately and notify affected parties within 48 hours, cooperate with authorities as required, provide instructions to protect your accounts, and implement additional safeguards to prevent recurrence.

4. Cookies and Tracking

We use cookies and similar tracking technologies on our website. You can control these through our cookie consent banner or your browser settings.

🔒

Essential Cookies

Session management and security. Cannot be disabled as they are required for the site to function.

📊

Performance Cookies

Google Analytics for traffic analysis. Data is anonymized and aggregated.

📢

Marketing Cookies

Facebook Pixel, Google Ads, and LinkedIn tracking for retargeting campaigns.

⚙️

Preference Cookies

Language selection, display preferences, and login session memory.

Controlling Cookies

Most browsers allow you to block or delete cookies. Disabling marketing cookies may limit personalized experiences. We respect Do Not Track browser signals and will not use cookies for marketing purposes when this signal is detected.

5. Third-Party Services

We integrate with third-party services that may independently collect data. We have Data Processing Agreements in place with key processors to ensure GDPR compliance.

Google Analytics

Website traffic and user behavior analysis

Meta Ads Manager

Retargeting and audience building via Facebook and Instagram

Stripe and PayPal

Secure payment processing with full PCI compliance

Google Workspace

Document storage, email, and collaboration

LinkedIn Ads

B2B marketing, prospecting, and thought leadership

Email Marketing Tools

Newsletter campaigns and automated sequences

We are not responsible for third-party privacy practices. Please review the privacy policies of each service directly for complete information.

6. Your Rights

GDPR Rights for EU and UK Residents

  • Right to Access: request a copy of all personal data we hold, provided within 30 days
  • Right to Correction: request correction of inaccurate or incomplete data
  • Right to Deletion: request deletion of personal data within 30 days, subject to legal obligations
  • Right to Data Portability: receive your data in a portable, machine-readable format
  • Right to Restrict Processing: limit how we use your data for a specified period
  • Right to Object: opt out of marketing communications and analytics tracking at any time
  • Right to Withdraw Consent: withdraw consent for data processing without affecting prior processing
  • Right to Complain: file a complaint with your local data protection authority

CCPA Rights for California Residents

  • Right to Know what personal information we collect and how it is used
  • Right to Delete your personal information, with some exceptions for legal compliance
  • Right to Opt-Out of the sale of personal information (we do not sell personal data)
  • Right to Non-Discrimination for exercising any of your CCPA rights

How to Exercise Your Rights

Email Contact@alhijaz.agency with the appropriate subject line such as Data Access Request or CCPA Deletion Request. We respond within 30 to 45 days. All requests are free unless they are excessive or clearly unfounded.

7. Data Retention

We retain personal data for different periods based on type and legal purpose.

Active Engagement

Data retained for the full duration of the service relationship

3 Years

Client contact information after services end, for business records

5 Years

Project files and deliverables for legal and archival purposes

7 Years

Payment records for tax compliance requirements

1 Year

Prospective client inquiries unless marketing consent was given

Until Unsubscribed

Marketing list data, deleted immediately upon unsubscribe request

You can request earlier deletion of any data by emailing Contact@alhijaz.agency. We will accommodate all reasonable requests unless legal obligations prevent us from doing so.

8. Children's Privacy

Our services are not directed at children under 13 years old. We do not knowingly collect personal information from children under 13. If we become aware of such collection, we will delete the information immediately and notify the parent or guardian.

For users aged 13 to 18, we require parental or guardian consent for service agreements, marketing communications, and data collection beyond what is necessary for service delivery.

If you are a parent or guardian concerned about a childs data, contact us immediately at Contact@alhijaz.agency and we will assist with access, correction, or deletion.

9. International Data Transfers

We operate globally and your data may be stored on servers in multiple countries. All international transfers are protected by standard contractual clauses, encryption, and secure channels approved by data protection authorities.

Applicable Standards

  • GDPR for EU and UK data subjects
  • CCPA for California residents
  • PIPEDA for Canadian residents
  • Local data protection laws of each applicable jurisdiction

Our primary office is in Pakistan. By using our services, you consent to processing of your data in Pakistan and transfer to international partners as necessary for service delivery.

10. Changes to This Policy

We may update this Privacy Policy at any time to reflect changes in our practices, comply with new regulations, or improve transparency. Major changes will be communicated via email and prominently posted on our website.

Your continued use of our services after changes are posted constitutes acceptance of the updated policy. Previous versions are available upon request at Contact@alhijaz.agency.

11. Contact and Data Protection

For privacy questions, data rights requests, breach reports, or feedback on our privacy practices:

Privacy Email

Contact@alhijaz.agency

GDPR Inquiries

gdpr@alhijaz.agency

Pakistan

+92 370 4500032

International

+44 7490 349724

Data Protection Authorities

  • GDPR complaints: European Data Protection Board
  • CCPA complaints: California Attorney General
  • Pakistan complaints: Pakistan Telecommunication Authority
Accept and ContinueBack to Home