We Asrar aldahir trading - C.R. 1187681 (EPHONE) (hereinafter as “we”, “EPHONE” or “EPHONE Website” or "Asrar Aldahir trading") as a platform focusing on e-commerce, and transaction services, have always taken very seriously the protection of personal data and privacy. Fully aware of the importance of personal data to you (or “users”), we will do our best to ensure the security and reliability of your personal data. To sustain your trust in us, we are committed to protecting your personal data by adhering to the following principles: lawfulness, fairness and transparency; purpose limitation; data minimization; accuracy; storage limitation; integrity and confidentiality; and accountability. We also undertake to put in place due to safeguards to protect your personal data according to pioneering industry standards on data security when you are using the EPHONE Website, products, applications, technology, software, or services (collectively as “products” or “services”) we offer.
For purposes of this Policy, your counterparty isAsrar aldahir trading - C.R. 1187681 (EPHONE). (“data controller”).
For any doubt, suggestion or advice, please contact us at:
[[email protected] ; Tel.: +968 2454 3960]
This Policy will help you understand the following:
- How we collect and use your personal data
- How we share, transfer and publicly disclose your personal data
- How we protect your personal data
- Your rights
- How we process the personal data of children
- How this Policy is updated
- How to contact us
Please read carefully and understand this Policy before you use our products (or services).
- How we collect and use your personal data
Personal data means any information relating to an identified or identifiable natural person (“data subject”); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.
We will collect and use your personal data for the following purposes herein only:
Required information with regard to use of EPHONE services
Our services contain certain core functions, including realizing your online shopping, improving your experience of our services, and ensuring secure transactions. In order to realize such functions, we may collect and use the following information relating to you:
EPHONE account information
You will need to use a EPHONE account to enable access to and use of EPHONE platform. When you register with or log in to EPHONE platform, you need to provide the following account information to complete registration or login: an email address or the account, Phone number and password & address.
Moreover, to better help you handle after-sale rights protection and services with regard to the goods traded, you may need to provide your personal phone number to us for timely feedback of handling results and relevant information.
For use of payment services, you need to provide the following financial information to complete payments, ensure transaction security, and comply with relevant applicable laws: billing address and bank account.
To ensure the delivery of goods and services, you need to provide the following information for timely receipt of goods/services and inquiry and check of transaction status: name, personal phone number, delivery address, transaction record, and order information.
Device information etc.
For your convenience in quickly searching out the products you are interested, we may collect common data of the device you use (hardware serial number, MAC address, unique device ID etc.), language settings, of your every visit on the EPHONE platform.
Further, such information may also be collected and used for data analysis and study, out of justified needs for offering personalized services and improving the quality of service, for improving system security of our services, for more accurate prevention of phishing App frauds, and for ensuring the security of your EPHONE account.
The above information you provide is authorized for our use on a continued basis as long as you use our services. Upon your request to close an account or for justified deletion, we will cease to use and delete such information according to relevant laws.
Information you provide to us at your option
To better your experience of our services, you may optionally provide the following personal information in order to acquire the following additional services. If you opt not to provide such personal data, your use of core functions of EPHONE services will not be affected, but you may be unable to use such additional services or may be required to fill out certain information every time you use certain services:
Personalized recommendation and sending of promotional and marketing information
In the course of using our services, you may at any time provide or choose to delete the following additional information that helps us offer more relevant services and experiences: name, gender, country/jurisdiction, date of birth, DOBs of spouse/parents, important anniversaries, income bracket, tags, third-party social network accounts, etc. Such information will be used for analysis of your behaviors and preferences to tailor personalized services for you and send you special offers, marketing information, advertisements, or other information you may be interested in.
You may at your option comment on the products/services you purchase. Such comments will be used to shape testimonials of corresponding products for reference by other EPHONE users and optimize user experience of relevant services.
If you use an Android device, you may at your option provide location data to us for real-time access to information of merchants in your surrounding area and acquiring site language services matched with your location.
We will seek your prior consent if we intend to use such information for other purposes not covered herein or use information for purposes other than the particular purposes for which it is collected.
We will according to our own business demands, entrust your personal data to a third-party data processor in a form meeting GDPR requirements, so as to provide better customer service, guarantee transaction security and improve user experience. For example, data processor can help us verify your identity and conduct background investigation, police investigation, fraud prevention and risk assessment, so as to guarantee your account security and transaction security, and help us provide logistics service to your, so that you can receive the corresponding goods/service among others in a timely manner. For the list of data processors and their category, and the scope, purpose and method of shared information among others, see Cooperation List
We entrust your personal data to data processor only for legal, proper, necessary, specific and clear purpose, and process personal data necessary to the rendering of service only. We will try our best to supervise data processor to fully perform the entrustment agreement for processing legally, so as to ensure that your rights can be guaranteed to the most extent.
- We will publicly disclose your personal data only under the following situations:
- Obtaining your explicit consent;
- Disclosure based on laws: we may publicly disclose your personal data if mandatorily required by laws, legal procedures, lawsuits or competent authorities of government.
How we protect your personal data
- We have used safety protection measures meeting industrial standards to protect the personal data provided by you, and prevent data from unauthorized access, public disclosure, utilization, modification, damage, or loss. We will adopt every reasonable and feasible measure to protect your personal data. we will use reliable protection mechanism to prevent data from hostile attack; we will deploy access control mechanism to ensure that only authorized personnel have access to personal data; and we will hold training courses for security and privacy protection, so as to strengthen our employees’ understanding about the importance of protecting personal data.
- We will adopt every reasonable and feasible measure to ensure that no irrelevant personal data is collected. We will reserve your personal data only within the period necessary to reach the goals stated in this Policy, except for otherwise extension of the reserving period or allowed by laws.
- We will regularly update and make public the relevant contents of security risk, impact assessment of personal data security, and other reports.
- As the internet is not an absolutely safe environment in which emails, instant messaging, and other methods of exchange EPHONE users. During this process of communication, the personal data that you provide or describe voluntarily may be disclosed to the others. we strongly advise you not to send personal data with this method. Please use a complex password to help us protect your account to be safe.
- We will try our best to ensure or guarantee the security of any information you send to us. We will assume the corresponding legal responsibilities if your legal rights and interests are compromised due to unauthorized access to, public disclosure, manipulation, or damage of information as a result of our physical, technical, or management safeguards damaged.
- After the personal data leakage, we will, according to the laws and regulations, inform you our contact information, the basic situation of the security event and possible impacts, actions we adopted or to be adopted, suggestions relevant to self-leading prevention and risk reduction, solutions to you among others in a timely manner. We will inform you the situation relevant to the event via email, letter, call, notice push, and other ways in a timely manner, or in the case of being difficult in informing the subjects of personal data one by one, we will release an announcement in a reasonable and effective manner.
- In addition, we will initiatively report the disposal of the security event of personal data according to the requirements of the supervision department.
In accordance with applicable laws, regulations, standards, and their established practices, we guarantee that you can exercise the following rights over your personal data:
You have the right to access your personal data described in Article 1 and Article 2 of this Policy through your personal account settings, except the exceptions provided by the laws and regulations. The information that you can access includes, but is not limited to, types of personal data that we collect and process, the purpose of processing such personal data (and the consequences for not providing such personal data), basis of legitimacy, facts of leaving the country, storage period, the right and channel to complain, and we will inform you of the specific data profiling logic if we use your personal data for data profiling.
If you are unable to access your personal data through the above-mentioned approaches, feel free to send us an email to [[email protected]]. We will respond to your access request within 30 days.
Correcting inaccurate or incomplete personal data
You can correct or supplement some of your personal data through your personal account settings by yourself. You have the obligation to update your personal data in a timely manner.
The correction of certain special information probably cannot be performed by yourself. You may contact us through various contact details released in this Policy or on the EPHONE platform. We will respond to your access request within 30 days. To ensure the security of your account, we may ask you to verify your identity.
Deleting your personal data
You can request us to delete your personal data in the following cases:
- Relevant data are no longer necessary for the purpose of collection or processing, and we lack the legal basis to continue processing your personal data;
- You no longer agree to or refuse to allow us to process your personal data, and we lack the legal basis to continue processing your personal data;
- Our processing of personal data violates laws and regulations;
- Your data involve with data of any child;
- You no longer use our products or services, or you have closed your account;
- We no longer provide products or services for you.
- If we decide to respond to your request for deletion, we will inform you by deleting your personal data in a timely manner, unless otherwise provided by laws and regulations authorization.
- Notwithstanding the foregoing, to resolve disputes, enforce user agreements, and comply with technical requirements related to safe operation, we may still retain certain data for a reasonable time to the extent permitted by law.
Withdrawing consents and processing constraints
- For personal data that you have allowed us to collect and process, you can withdraw your consent at any time through your account settings or send an email to [[email protected]], indicating which consent you want to revoke. When you have withdrawn your consent, we will no longer process the relevant personal data. However, your decision to withdraw your consent will not affect the legality of personal data processing previously done based on your authorization.
- In addition, in some jurisdictions, applicable law may entitle you to limit our way of using your personal data, including:
- You doubt the accuracy of your personal data;
- Personal data processing is illegal, and you only request to restrict the use of your personal data and object to the deletion of your personal data;
- We no longer need your personal data for processing, but you need such information for the purpose of filing a lawsuit or responding to a lawsuit;
- You object to our processing of your personal data based on public interests or legitimate interests and oppose waiting for verification of whether the aforementioned public interests or the legitimate interests of EPHONE will outweigh your own interests.
- Right of refusal
- In some jurisdictions, applicable law may empower you to require EPHONE not to process your personal data for a specific purpose (including identifying behavioral analysis, direct marketing purposes, etc.), though such processing is based on legitimate interests. If you object to such processing, we will no longer process your personal data for these purposes unless we can prove that such processing has a convincing and reasonable cause, or that such processing is necessary for the establishment, exercise, or safeguard of legal rights.
- If your personal data is processed for direct marketing purposes, you can refuse to let EPHONE process your data for direct marketing purposes at any time through the boot settings on the relevant advertising screen or by sending an email to [[email protected]oman.com].
Canceling an account
- You can cancel the EPHONE account that you have registered at any time, by sending an email to [[email protected]], requesting us to cancel your EPHONE account, we may ask you to verify your identity to ensure the security of your account.
- After canceling your account, we will cease to provide services for you and delete your personal data within the time limit stipulated by applicable laws in accordance with your request, unless otherwise provided by laws and regulations or when you have reached an agreement with us.
Obtaining a copy of personal data
- You have the right to send us a written request to obtain a copy of your personal data through the contact information released in this Policy.
Constraining automatic decision-making of the information system (data image)
- Based on personal data legally collected under the authorization, automatic decisions (for example, commercial information push) made by labeling or image processing realized through inartificial automatic decision-making technologies such as the information system and algorithm will be subject to your legal constraints. In some business functions, we may only make decisions based on an inartificial automatic decision-making mechanism, such as the information system and algorithm. Where these decisions significantly influence your legal rights and interests, you have the right to request us to explain or reject our continued provision of such labeling or image processing service, and we will provide appropriate remedies in accordance with the law.
Responding to your above request
- In order to ensure security, you may need to provide a written request or otherwise prove your identity. We may ask you to verify your identity before processing your request.
- We will make a reply within 30 days.
- For your reasonable request, we do not charge any fee in principle, but we will charge a certain cost for repeated requests beyond the reasonable limit, as the case may be. We may reject those repeated requests without a cause, requests requiring too much technical means (for example, development of a new system or fundamental change of the existing practice is necessary) or posing risks to legal rights and interests of others, or extremely unrealistic requests (for example, involving information stored on the backup tape).
We will not be able to respond to your request as required by laws and regulations, in the following situations:
Contact UsIf you have any questions about this Agreement, please contact us filling this contact form
- Directly related to national security and national defense security;
- Directly related to public safety, public health, and major public interests;
- Directly related to the criminal investigation, prosecution, trial, judgment execution, etc.;
- There is sufficient evidence proving your subjective malice or abuse of rights;
- Responding to your request will result in serious damage to your legitimate rights and interests or that of other individuals or organizations.
- Involving business secrets;
- Other circumstances specified by applicable laws.
How we process the personal data of children
- Our products, websites, and services are for adults only. Children shall not create their own user accounts. We will not collect or use data on children if informed.
- We regard anyone under  years old as a child, despite different definitions of children by local laws and customs.
- Once we find ourselves having collected personal data on children without their parents’ prior and verifiable consent, we will try to delete the relevant data as soon as possible.
How this Policy is updated
Major changes referred to in this Policy include, but are not limited to:
- Major changes in our service model. For example, the purpose of processing personal data, the type of processed personal data, the use of personal data, etc.;
- Major changes in our ownership structure, organizational structure, among others. Such as change of the owner caused by business adjustment, bankruptcy and mergers and acquisitions, and others;
- Changes in main objects of personal data delegated to be processed;
- Changes in main objects of personal data publicly disclosed;
- Major changes in your rights to participate in the processing of personal data and how it is exercised;
- Upon changes in our department responsible for dealing with the security of personal data, contact information, and complaints channels;
- Upon high risks indicated in the personal data security impact assessment report.
How to contact us
- Generally, we will reply within [30 days]. If you are dissatisfied with our response, especially if you believe that our acts of processing personal data have caused damage to your legal rights and interests, you can also contact the [relevant EU data protection authority or committee] for assistance.
- We will publicly disclose your personal data only under the following situations: