Privacy Policy

Diwansoft Technologies W.L.L.("Diwansoft", "we", "our") is an enterprise technology company registered in Qatar. We provide AI integration, mainframe modernization, cloud migration, and cybersecurity services to organizations across the MENA region and beyond.

For the purposes of applicable data protection law, Diwansoft is the Data Controller for personal data collected through our website and client engagements.

We collect personal data only in the following contexts:

We do not use cookies for tracking. We do not collect sensitive personal data (health, biometric, financial account data) through our website.

We process personal data under the following legal bases depending on the applicable jurisdiction:

• Contractual necessity — to fulfill service agreements with our Clients
• Legitimate interests — to respond to inquiries, prevent fraud, and improve our services
• Consent — where you have explicitly opted in (e.g., newsletter subscriptions)
• Legal obligation — where we must process data to comply with applicable law

We do not sell, rent, or trade personal data. We share data only in the following limited circumstances:

• Service providers: Cloud infrastructure (AWS, Azure, GCP), email delivery (transactional only), and analytics — all bound by data processing agreements
• Legal requirements: When required by court order, regulatory mandate, or applicable law
• Corporate transactions: In the event of a merger or acquisition, subject to equivalent privacy protections

We retain personal data only as long as necessary for the purpose for which it was collected:

• Contact inquiries: 12 months from last interaction
• Client data: Duration of the contract + 7 years (for legal and audit purposes)
• Recruitment data: 6 months from application date (unless you consent to longer retention)
• Anonymized analytics: Indefinitely (not personal data)

Depending on your jurisdiction, you have the following rights regarding your personal data:

To exercise any right, email us at privacy@diwansoft.com. We respond within 30 days.

We implement technical and organizational measures appropriate to the sensitivity of the data we process, including:

• End-to-end encryption for all data in transit (TLS 1.3)
• Encryption at rest for stored personal data (AES-256)
• Role-based access control and least-privilege principles
• Regular security assessments including third-party penetration testing
• SOC 2-aligned security controls across our environments

Diwansoft processes personal data in compliance with applicable data protection frameworks across the jurisdictions in which we operate:

• Qatar: Personal Data Protection Law (PDPL)
• UAE: Federal Personal Data Protection Law (PDPL No. 45 of 2021)
• Saudi Arabia: Personal Data Protection Law (PDPL, effective 2023)
• Bahrain: Personal Data Protection Law (PDPL 2018)
• EU: General Data Protection Regulation (GDPR)

We review and update this Privacy Policy periodically. Material changes will be communicated via email to active Clients and posted on this page with the updated effective date. We encourage you to review this policy periodically.

For privacy-related inquiries, data subject requests, or to contact our Data Protection Officer: