Privacy Policy

Effective Date: January 1, 2025

IslandApp (“we,” “our,” or “us”) respects your privacy and is committed to protecting your personal data in accordance with the Saudi Personal Data Protection Law (PDPL), the EU General Data Protection Regulation (GDPR), and other applicable laws. This Privacy Policy explains how we collect, use, share, and protect your information when you use IslandApp.

1. Information We Collect

• Account Information: Name, email, phone number, password, organization details (for enterprise accounts).
• Usage Data: Course progress, interactions, role-based activity logs, preferences.
• Device & Technical Data: IP address, browser type, OS, device identifiers, app version.
• Content Data: Files, SCORM/xAPI packages, media, and other materials you upload or interact with.
• Payment Information: Processed securely via third-party providers; we do not store card details.

2. How We Use Your Information

• Deliver, personalize, and improve IslandApp features.
• Enable authentication, role-based access, and multi-tenant isolation.
• Process payments and subscriptions.
• Send service updates, notifications, and policy changes.
• Analyze usage patterns to improve performance and security.
• Detect, prevent, and investigate fraud or security incidents.

3. Legal Basis for Processing (GDPR & PDPL)

• Consent: When you have given clear consent for us to process your personal data.
• Contract: Processing necessary to provide the services you have requested.
• Legal Obligation: Compliance with applicable laws and regulations.
• Legitimate Interests: For operational, security, and business purposes that do not override your rights.

4. Sharing Your Information

We do not sell your personal data. We may share it with:

• Service Providers: Hosting, analytics, payment processing, customer support.
• Legal Authorities: When required by law or regulation.
• Business Transfers: In case of a merger, acquisition, or sale of assets.
• Tenant Administrators: For enterprise accounts, authorized administrators may access certain data for user management purposes.

5. Data Storage & Security

• Data is stored on secure servers with encryption in transit (TLS) and at rest (AES-256).
• Access is limited to authorized personnel bound by confidentiality obligations.
• We apply multi-tenant data isolation to ensure organizational separation.
• While we take reasonable steps to protect your data, no system is completely secure.

6. Your Rights

Under PDPL and GDPR, you have the right to:

• Access, update, or delete your personal data.
• Withdraw consent at any time without affecting prior lawful processing.
• Request a copy of your data in a portable format.
• Object to processing for specific purposes.
• File a complaint with the relevant data protection authority.

To exercise your rights, contact us at info@islandapp.net.

7. Cookies & Tracking Technologies

We use cookies and similar technologies to:

• Maintain your session and preferences.
• Analyze app performance and usage.
• Provide a secure login experience.

You can control cookies via your browser or device settings, but disabling them may affect app functionality.

8. Third-Party Links & Integrations

IslandApp may integrate with third-party services (e.g., payment gateways, webinar platforms). We are not responsible for their privacy practices—please review their policies before use.

9. Children’s Privacy

IslandApp is not intended for children under 13 (or the minimum age required in your jurisdiction). We do not knowingly collect personal data from children.

10. Data Transfers Outside Saudi Arabia & the EEA

If we transfer personal data outside Saudi Arabia or the European Economic Area, we ensure adequate safeguards, such as contractual clauses approved by regulatory authorities.

11. Changes to This Policy

We may update this Privacy Policy periodically. Significant changes will be notified via the app or email.

12. Contact Us

For questions or concerns about this Privacy Policy, contact us at: