Privacy Policy

CNIT Solutions ("we," "our," or "us") is committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website, use our products and services, or interact with us in any way. We are headquartered in Dubai, UAE, and this policy complies with applicable data protection laws including UAE Federal Decree-Law No. 45 of 2021 on Personal Data Protection, GDPR where applicable to EU residents, and other relevant international privacy regulations.

We collect information that you provide directly to us, information collected automatically, and information from third-party sources. **Information You Provide:** • Contact information (name, email address, phone number, company name) • Account credentials when you create an account • Payment and billing information • Communications you send to us • Survey responses and feedback • Job application materials **Information Collected Automatically:** • Device information (IP address, browser type, operating system) • Usage data (pages visited, time spent, click patterns) • Cookies and similar tracking technologies • Log files and analytics data **Information from Third Parties:** • Business partners and vendors • Publicly available sources • Social media platforms (when you connect your accounts)

We use the information we collect for the following purposes: • **Service Delivery:** To provide, maintain, and improve our products and services • **Communication:** To respond to your inquiries, send updates, and provide customer support • **Marketing:** To send promotional materials and newsletters (with your consent) • **Analytics:** To analyze usage patterns and improve user experience • **Security:** To detect, prevent, and respond to security threats • **Legal Compliance:** To comply with applicable laws and regulations • **Business Operations:** To process transactions and manage our business relationships

We do not sell your personal information. We may share your information in the following circumstances: • **Service Providers:** With trusted third-party vendors who assist us in operating our business (hosting, analytics, payment processing) • **Business Partners:** With partners who provide complementary services, with your consent • **Legal Requirements:** When required by law, regulation, or legal process • **Business Transfers:** In connection with a merger, acquisition, or sale of assets • **Protection of Rights:** To protect our rights, privacy, safety, or property All third parties are required to maintain the confidentiality of your information and use it only for the purposes for which it was shared.

We implement robust security measures to protect your personal information: • **Encryption:** All data transmitted to and from our systems is encrypted using TLS 1.3 • **Access Controls:** Strict access controls limit data access to authorized personnel only • **Infrastructure Security:** Our systems are hosted in SOC 2 Type II certified data centers • **Regular Audits:** We conduct regular security assessments and penetration testing • **Incident Response:** We have established procedures for responding to data breaches • **Employee Training:** All staff receive regular security awareness training While we strive to protect your information, no method of transmission over the Internet is 100% secure. We cannot guarantee absolute security but commit to notifying you of any breaches as required by law.

We retain your personal information only for as long as necessary to fulfill the purposes for which it was collected, including: • **Active Accounts:** Data is retained while your account is active • **Legal Requirements:** Some data may be retained longer to comply with legal obligations • **Dispute Resolution:** Data may be retained to resolve disputes or enforce agreements • **Backups:** Encrypted backups may retain data for a limited period for disaster recovery When data is no longer needed, we securely delete or anonymize it in accordance with our data retention policies.

Depending on your location, you may have the following rights regarding your personal information: • **Access:** Request a copy of the personal information we hold about you • **Correction:** Request correction of inaccurate or incomplete information • **Deletion:** Request deletion of your personal information (subject to legal requirements) • **Portability:** Receive your data in a structured, machine-readable format • **Objection:** Object to processing of your information for certain purposes • **Restriction:** Request restriction of processing in certain circumstances • **Withdrawal of Consent:** Withdraw consent where processing is based on consent To exercise these rights, contact us at privacy@cnit-solutions.com. We will respond to your request within 30 days.

We use cookies and similar technologies to enhance your experience: • **Essential Cookies:** Required for basic site functionality • **Analytics Cookies:** Help us understand how visitors use our site • **Functional Cookies:** Remember your preferences and settings • **Marketing Cookies:** Used to deliver relevant advertisements You can control cookies through your browser settings. Note that disabling certain cookies may affect site functionality. For more details, see our Cookie Policy.

Your information may be transferred to and processed in countries other than your own. When we transfer data internationally, we ensure appropriate safeguards are in place: • Standard Contractual Clauses approved by relevant authorities • Data Processing Agreements with all vendors • Compliance with applicable data transfer frameworks We primarily store data in UAE-based data centers, with backup facilities in secure locations.

Our services are not intended for individuals under 18 years of age. We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately, and we will take steps to delete such information.

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. We will notify you of material changes by: • Posting the updated policy on our website • Sending an email notification to registered users • Displaying a prominent notice on our services We encourage you to review this policy periodically.

If you have questions about this Privacy Policy or our privacy practices, please contact us: **CNIT Solutions** Data Protection Officer Dubai, United Arab Emirates Email: privacy@cnit-solutions.com Phone: +971 4 XXX XXXX For formal complaints, you may also contact the UAE Data Office or your local data protection authority.