Privacy Policy

1. Introduction

Welcome to EzUmrah, the premier Umrah software and Hajj management system provided by EzTechify ("Company," "we," "us," or "our"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Umrah CRM platform.

Please read this privacy policy carefully. If you do not agree with the terms of this privacy policy, please do not access the platform. We reserve the right to make changes to this privacy policy at any time and for any reason. We will alert you about any changes by updating the "Last Updated" date of this privacy policy.

2. Information We Collect

We collect information from you when you use our travel agency software. The types of information we collect include:

2.1 Personal Information You Provide

When you register for our Umrah SaaS platform, we collect:

• Account Information: Name, email address, company name, phone number, billing address
• Payment Information: Credit card details, billing information (processed securely through third-party payment processors)
• Profile Information: Username, password, profile picture, job title
• Communication Data: Information you provide when contacting support or participating in surveys

2.2 Pilgrim Data (Processed on Your Behalf)

As a provider of Umrah CRM, we process the following pilgrim data on behalf of your agency:

• Identity Information: Full name, date of birth, nationality, passport number, passport expiry date
• Contact Information: Email address, phone number, home address, emergency contact details
• Travel Information: Flight details, accommodation preferences, package selections, group assignments
• Visa Information: Visa application data, status updates, document scans
• Health Information: Medical conditions, vaccination records (with explicit consent)
• Religious Preferences: Preferred rituals, special requirements for Umrah/Hajj

IMPORTANT You are responsible for ensuring you have obtained all necessary consents from pilgrims before entering their data into our Hajj management system.

2.3 Automatically Collected Information

When you use our Umrah software, we automatically collect:

• Log Data: IP address, browser type, operating system, access times, pages viewed
• Device Information: Device type, device identifiers, mobile network information
• Usage Data: Features used, time spent, clicks, interactions with the platform
• Cookies: Cookie information as described in our Cookie Policy

3. How We Use Your Information

We use the information we collect for the following purposes:

3.1 Providing and Maintaining Our Services

• To operate and maintain your Umrah CRM account
• To process pilgrim bookings and manage travel arrangements
• To generate invoices and manage billing
• To provide customer support
• To authenticate users and ensure security

3.2 Improving Our Platform

• To analyze usage patterns and optimize our Hajj management system
• To develop new features and functionality
• To personalize user experience
• To conduct research and analytics

3.3 Communications

• To send administrative information (updates, security alerts, support messages)
• To send marketing communications (with opt-out option)
• To respond to inquiries and requests

3.4 Legal Compliance

• To comply with applicable laws and regulations
• To enforce our Terms of Service
• To protect our rights and the rights of others

4. Legal Basis for Processing (GDPR)

If you are located in the European Economic Area (EEA) or United Kingdom, our legal basis for collecting and using your personal information depends on the information concerned and the context in which we collect it. Most of our processing is based on:

• Contractual Necessity: Processing necessary to perform our contract with you (e.g., providing the Umrah SaaS platform)
• Legitimate Interests: Processing necessary for our legitimate interests (e.g., improving our services, security)
• Legal Obligations: Processing necessary to comply with legal requirements
• Consent: Processing based on your consent (e.g., marketing communications)

5. Data Sharing and Disclosure

We may share your information in the following situations:

5.1 Service Providers

We share information with third-party service providers who perform services on our behalf, such as:

• Payment processors (Stripe, PayPal)
• Cloud hosting providers (AWS, Google Cloud)
• Email service providers (SendGrid, Mailchimp)
• Analytics providers (Google Analytics)
• Customer support tools (Zendesk)

These providers have access to your information only to perform specific tasks on our behalf and are obligated not to disclose or use it for other purposes.

5.2 Visa and Travel Partners

When processing visas for pilgrims, we may need to share relevant information with:

• Embassies and consulates for visa applications
• Airlines and hotels for travel arrangements
• Ministry of Hajj and Umrah (Saudi authorities)
• Local service providers in Saudi Arabia

5.3 Business Transfers

If we are involved in a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction. We will notify you of any such change in ownership.

5.4 Legal Requirements

We may disclose your information if required to do so by law or in response to valid requests by public authorities (e.g., court orders, government agencies).

5.5 With Your Consent

We may share your information for any other purpose disclosed to you and with your consent.

6. Data Security

We implement appropriate technical and organizational security measures to protect your information, including:

• Encryption: All data transmitted is encrypted using TLS/SSL protocols. Data at rest is encrypted using AES-256.
• Access Controls: Strict role-based access controls and authentication requirements
• Regular Audits: Regular security assessments and penetration testing
• Data Backup: Regular encrypted backups to prevent data loss
• Security Certifications: ISO 27001 compliant data centers

While we strive to use commercially acceptable means to protect your personal information, no method of transmission over the Internet or method of electronic storage is 100% secure.

7. Data Retention

We retain your information for as long as your account is active or as needed to provide you services. We will retain and use your information as necessary to comply with our legal obligations, resolve disputes, and enforce our agreements.

7.1 Account Information

If you cancel your Umrah CRM subscription, we will retain your data for 30 days to allow for data export. After 30 days, your data will be permanently deleted from our active systems, though residual copies may remain in backups for up to 90 days.

7.2 Pilgrim Data

Pilgrim data is retained according to your agency's policies and applicable legal requirements. You can delete pilgrim records at any time through the platform.

8. Your Privacy Rights

8.1 GDPR Rights (EEA/UK Residents)

If you are located in the EEA or UK, you have the following rights:

• Right to Access: Request copies of your personal information
• Right to Rectification: Request correction of inaccurate information
• Right to Erasure: Request deletion of your information
• Right to Restrict Processing: Request limitation of processing
• Right to Data Portability: Request transfer of your information
• Right to Object: Object to processing based on legitimate interests
• Right to Withdraw Consent: Withdraw consent at any time

8.2 CCPA Rights (California Residents)

If you are a California resident, you have the following rights:

• Right to Know: Request disclosure of information collected, used, and shared
• Right to Delete: Request deletion of personal information
• Right to Opt-Out: Opt-out of sale of personal information (we do not sell data)
• Right to Non-Discrimination: Exercise rights without discrimination

8.3 How to Exercise Your Rights

To exercise your privacy rights, please contact us at privacy@eztechify.com. We will respond to your request within 30 days. We may need to verify your identity before processing your request.

9. International Data Transfers

Your information may be transferred to and processed in countries other than your own. Our servers are located in the United States and European Union. If you are accessing our Umrah software from outside these regions, your information will be transferred to these countries.

For transfers from the EEA to countries not deemed adequate by the European Commission, we implement appropriate safeguards such as Standard Contractual Clauses approved by the European Commission.

10. Children's Privacy

Our Hajj management system is not intended for individuals under the age of 18. We do not knowingly collect personal information from children. If you become aware that a child has provided us with personal information, please contact us immediately.

11. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to track activity on our platform and hold certain information. For detailed information about the cookies we use and your choices, please see our Cookie Policy.

12. Do Not Track

Some browsers have a "Do Not Track" feature that signals websites that you do not want to have your online activity tracked. Our platform does not currently respond to browser "Do Not Track" signals.

13. Third-Party Links

Our platform may contain links to third-party websites. We are not responsible for the privacy practices or content of these third-party sites. We encourage you to review the privacy policies of any third-party sites you visit.

14. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last Updated" date. If we make material changes, we will provide additional notice (such as email notification).