DATA GUARD Cybersecurity & AI
Back to Home
Legal

Privacy Policy

How we collect, use, store and safeguard your personal data — aligned with the Saudi PDPL, GDPR and global best practice.

Last updated: January 2026

On this page

  1. Introduction
  2. Data we collect
  3. How we use data
  4. Legal basis
  5. Sharing & disclosure
  6. Data retention
  7. Your rights
  8. Security measures
  9. Cookies & tracking
  10. Contact us

1Introduction

Data Guard ("we") is committed to protecting the privacy of every individual whose personal data we process. This Policy explains how we collect, use, disclose, retain and protect personal data in connection with our website (www.d-guard.tech) and our cybersecurity, IAM, API security, data governance and AI products and services.

Scope: This Policy applies to all users, prospective customers, partners and visitors. It complements any contractual terms governing specific services.

2Data we collect

Information you provide

  • Identity & contact data: full name, job title, employer, business email, phone, country.
  • Demo & inquiry data: details submitted through our forms or sales conversations.
  • Account data: credentials and profile information when you use our products.

Information we collect automatically

  • Technical data: IP address, browser type, device identifiers, OS, referral URL.
  • Usage data: pages visited, time spent, clicks, search terms, error logs.

3How we use data

  • Deliver, maintain, and improve our products and services.
  • Respond to inquiries, schedule demos, and provide customer support.
  • Send relevant product updates, security advisories, and marketing (with consent).
  • Comply with legal, regulatory, audit and security obligations.
  • Detect, investigate, and prevent fraud, abuse, or security incidents.

5Sharing & disclosure

We do not sell personal data. We share it only with:

  • Authorised employees who need it to perform their roles.
  • Vetted sub-processors bound by data-protection agreements.
  • Regulators, auditors, or law enforcement when legally required.
Cross-border transfers: Where data is transferred outside Saudi Arabia, we apply safeguards equivalent to PDPL Article 29.

6Data retention

We retain data only as long as necessary. Typical periods:

  • Sales/marketing leads: up to 24 months from last interaction.
  • Customer account data: contract duration + 7 years.
  • Server & security logs: 12 months (rolling).

7Your rights

Under the Saudi PDPL and other applicable laws, you have the right to:

  • Access your personal data and request a copy.
  • Correct inaccurate or incomplete data.
  • Request deletion, subject to legal limits.
  • Object to or restrict processing in defined cases.
  • Withdraw consent at any time.
  • Lodge a complaint with SDAIA.

To exercise any of these rights, email us at

contact@d-guard.tech

8Security measures

As a cybersecurity company, our safeguards include:

  • AES-256 at rest, TLS 1.3 in transit.
  • Zero-trust access with MFA for all staff.
  • Continuous monitoring, detection & incident response.
  • Annual third-party pen testing & SOC reviews.
  • ISO 27001 controls + PDPL Article 21 (data protection by design).

9Cookies & tracking

We use minimal first-party cookies for essential site functionality and aggregated analytics. No behavioural advertising trackers.

10Contact us

For any questions about this Privacy Policy: