PRIVACY POLICY
TADWIR PRO

Creation Date :13/10/2025
Last Updated :30/03/2026
Version :3.0.0

Key Summary Points
• The application does not provide any electronic payments within the application.
• We do not sell personal data nor share it for marketing or advertising purposes.
• We use the minimum amount of data and permissions necessary to operate the service.
• Precise location is used only when operationally required to fulfill the request.
• The artificial intelligence service is optional and is provided via our Web API.

Policy Index

1. Introduction and Core Commitment

2. What We Collect and What We Do Not Collect

3. How and Why We Process User Data

4. Application Services and Scope of Processing

5. Processing of Geographic Location During the Request

6. Central Data Processing Mechanism

7. Supporting Technical Services and Transparency

8. Sharing Data with Third Parties

9. Security and Protection

10. Data Retention Periods

11. Justifications for Data Collection and Application Permissions

12. Protection of Children

13. User Rights and the Mechanism for Exercising Them

14. Consent and Choice

15. Legal Bases and Reference Standards

16. International Data Transfers and Cross-Border Processing

17. Types of Acceptable and Unacceptable Waste

18. Our Collection Team and Contractual Safeguards

19. Data Protection Officer and Official Communication

20. Access to the Policy and Multilingualism

21. Changes to the Policy

22. Legal Compliance and Review

23. Reporting Security Breaches

24. Contact Us

25. Conclusion

1. Introduction and Core Commitment
   Thank you for choosing TADWIR PRO. We place the highest importance on your privacy and are committed to protecting your personal data in accordance with the provisions of Algerian Law No. 18-07, in a manner consistent with internationally recognized technical and organizational best practices, and with the compliance requirements of application distribution platforms, including Google Play.
   TADWIR PRO is an application and a digital platform aimed at facilitating the collection and recycling of waste by connecting users who wish to dispose of waste in a responsible manner with our collection team.

Business Model
Our business model is based on purchasing recyclable waste from users and then reselling it to specialized recycling factories. This model enables the achievement of a profit margin that covers operational costs and ensures the sustainability of the service.

Important Note on Payments
• The TADWIR PRO application does not provide any electronic payments within the application.
• All financial transactions are conducted in cash and directly upon service provision between the user and our collection team.

2. What We Collect and What We Do Not Collect
   We are committed to full transparency in stating the types of data we collect, the basis of each processing activity, and its purpose.

Classification of the data we process:
• Personal Information (Personal Info):
Such as full name, phone number, and email address

• Location (Location):
Approximate and precise location only when executing the request

• Device and Technical Data (Device or Other IDs):
Such as FCM Token, IP address, network information, and security logs

• User Content (User Content):
Such as images or texts that the user chooses to enter within the application

This data is collected and used only for the operational purposes described in this policy and is not used for advertising or marketing purposes.

Methods of Data Collection:
• Some data is collected directly from the user (such as the name, phone number, images, or texts entered).
• Some data is also collected automatically when using the application (such as the IP address, device information, and notification identifiers), for the purposes of operating the service, improving performance, and ensuring security.

2.1 Basic Data
• Full name
• Phone number
• Email address
• Country
• Province
• Municipality
• Account type
• Password, in a protected and encrypted form in accordance with established security practices

2.2 Images and Media
• The profile picture is completely optional
• Images of waste are completely optional
• Photos are captured directly through the camera within the application
• We do not request permission to access the photo gallery or media files stored on the device for this purpose

2.3 Location Data
• We process geographic location data only when operationally necessary to execute the request and to accurately direct the collection team

2.4 Technical Data
• Notification tokens (FCM Token) or their equivalents
• Technical network data necessary for operating the service
• Necessary security and audit logs to detect misuse or to handle incidents

2.5 What We Do Not Collect
• Financial data, such as credit cards or bank accounts
• Official identification documents, such as an identity card or passport
• Sensitive data, such as religious beliefs, political opinions, or health data
• Advertising tracking identifiers for marketing or advertising targeting purposes
• We do not access the photo gallery (Gallery) or media files stored on the device, and no images are collected from the device unless the user captures them directly via the camera within the application, on an optional basis.
• We do not read, inspect, or upload any files that are already present on the user’s device.

2.6 No Use of Analytics and Advertising
• The application does not use Firebase Analytics or Firebase Crashlytics in the currently published version of the application
• The application does not use any analytics or advertising services within the application
• We do not display advertisements within the application
• We do not sell data to third parties
And we are committed to ensuring that all disclosures related to data collection and its use are consistent with the Data Safety form on Google Play.

3. How and Why We Process User Data
   We process personal data only when there is a legitimate and specific purpose, and within the limits necessary to provide the service, to protect it, or to comply with legal obligations.

Main Purposes of Processing:
• Creation and management of the account
• Execution of waste collection requests or construction waste transport
• Communication with the user regarding requests or the account
• Operation of the notifications necessary for the service
• Processing of optional images attached to requests
• Processing of geographic location upon submitting the request
• Processing of inquiries in optional services, such as artificial intelligence assistance
• Management of job applications and requests to join
• Protection of the application, prevention of misuse, and maintenance of operational continuity

Data is used only for the operational purposes mentioned above and is not used for advertising or marketing purposes.

Some technical data may be processed through technical service providers (such as Google or Firebase) to the extent necessary for operating the application’s functions, such as notifications or map display.

Legal Bases for Processing:
• Performance of the contract: when processing is necessary to provide the service requested by the user
• Consent: when the user chooses to use an optional service, share an image, or grant optional permission
• Legitimate interest: when processing is necessary to protect the application, prevent misuse, or ensure the continuity of the system, while respecting the user’s rights
• Legal obligation: when required by laws or regulatory obligations
• Pre-contractual measures: with regard to requests to join and employment applications

Data Control:
• The user may request the deletion of their data through the account settings within the application, or by contacting us directly in accordance with the mechanism set out in this policy

4.     Application Services and Scope of Processing

4.1 Waste Price Display Service
• Description: Display of the value of waste within the "Price Display" option in the side menu.
• Data Collected: No personal data is collected or processed when browsing this interface.
• Data Sharing: No personal data is shared.
• Nature of Use: Completely anonymous browsing.

4.2 Construction Waste Transport Truck Request Service
• Data Collected: name, phone number, location, type of waste, and approximate size.
• Transmission Path: application → TADWIR PRO Web API → our collection staff.
• Location Data: precise coordinates are transmitted through our secure system.
• Protection Measures: mandatory training for staff, compliance monitoring, and deletion of data in accordance with the retention periods specified in this policy.
• Legal Basis: performance of the contract with the user.

4.3 Green Store (Optional Service)
• Description: A platform for display and exchange between users.
• Data Collected: No personal data is collected during browsing.
• Legal Notice: Financial transactions take place outside the platform between the seller and the buyer directly.
• Note: No payment is made within the application.

4.4 Artificial Intelligence Assistance (Optional Service)
• Description: An intelligent assistant for answering users’ inquiries.

Data Collected:
• Texts of inquiries entered by the user.
These texts may include information that the user enters themselves, including personal data.

We attempt to remove or reduce personal identifiers prior to processing to the extent possible; however, it may not be possible to remove all data if the user enters it themselves.

Data Processing:
User texts may be processed through an external service provider (such as OpenAI) within this flow, limited to the minimum necessary to provide the service.
This processing may include the transfer of data to servers outside the country.

In this context, we are committed to the following:
• Not sending direct personal identifiers such as name, phone number, or email address
• Minimizing data as much as possible before transmission
• Using an encrypted and secure connection
• Temporary processing in memory only where possible
• Deleting data after completing the response within our systems

User Notice:
The user is strongly advised not to enter any personally identifiable information within inquiry texts.

Use of Data:
Data is not used by us for training or improving models.
We also do not allow external service providers to use the data for advertising purposes or for creating user profiles (profiling).

Data Retention:
• Data is processed temporarily only to provide the response, and we do not retain it after the processing is completed within our systems.
• Data may be processed by the external service provider (such as OpenAI) in accordance with its own policies, which we do not fully control.

4.5 Environmental Issue Reporting Service
• Data Collected: image (optional), location, type of issue, and description.
• Data Sharing: The necessary information may be shared with the relevant authorities after removing or reducing personal data whenever possible.
• Note: Image capture in this service is completely optional.

4.6 Join Request Interface
• Mandatory Contact Data: full name, phone number, and email address.
• Preference Data: the preferred duration or arrangement for joining, such as 3 months, 6 months, or part-time work.
• Initial Documents: the curriculum vitae (CV) is optional at the initial stage.
• Purpose of Collection: contacting applicants, evaluating qualifications, and initiating pre-contractual procedures and formal employment with TADWIR PRO.
• Legal Basis: processing is necessary for taking pre-contractual measures based on the request of the data subject.
• Commitment: this data is not used for any marketing or advertising purposes.

4.7 Principle of Direct Oversight
• All data processing operations related to the application services are carried out through the TADWIR PRO Web API and under our direct supervision, with compliance with the controls set out in this policy.

5. Processing of Geographic Location During the Request
   When the user submits a collection request, location data is processed according to the following mechanism:

Map Display
• The application uses Google Maps SDK to display the map within the user interface only.
• The purpose is to enable the user to accurately determine the geographic location.

No Sharing of Personal Data with Google for This Purpose
• We do not send the name, phone number, or email address to Google within the location determination process in the service.
• We do not share any direct personal identifiers with Google for the purpose of executing the request.
• Google, as an independent technical service provider (third-party service provider), may process certain technical or operational data (such as IP address, device information, or connection data), in accordance with its own privacy policy.

Secure Processing of Location Data
• After determining the location, the coordinates are sent only to the TADWIR PRO Web API.
• We protect this data in accordance with established security controls, and we may use risk reduction techniques such as tokenization or functional separation where applicable.

Scope of Use
• Geographic location is used only when the user interacts with the application, such as submitting a request or selecting a location within the interface.
• Location is not collected in the background, and the user is not tracked continuously or after closing the application.

Internal Use and Deletion Period
• Coordinates are used internally only to direct the collection team.
• Precise location data is deleted within 60 minutes of completion of the service, unless the law or the investigation of a specific incident requires its retention for a longer, limited, and justified period.

6.     Central Data Processing Mechanism

Internal Technical Development
• We have developed our TADWIR PRO Web API to be the central and secure processing point for all data received from the application.

Principle of Central Processing
• Data passes first through our secure server, where it is processed and secured before what is necessary from it is sent within our operational environment or to technical service providers where required.

Core Processing Stages

1. Receiving data through a secure connection.

2. Encrypting data and protecting it during transmission and storage in accordance with the adopted technical architecture.

3. Removing metadata from images, such as EXIF, where necessary.

4. Secure temporary storage only for the necessary period.

5. Forwarding the data to the relevant staff member or supporting service within protected channels.

Notification Stage
• We send the notification token of the collection staff member to Firebase Cloud Messaging only when necessary to deliver a notification.
• The notification itself does not contain personal data or sensitive information, but is rather a general alert such as: "New request - tap to view".

Stage of Displaying Data to the Authorized Staff Member
• When the staff member taps on the notification:
• The application connects directly to our secure server.
• We verify the identity of the staff member and their permissions.
• Full data is not displayed except after successful authentication and within the limits of the granted permissions.

7. Supporting Technical Services and Transparency
   We use a limited number of supporting technical services to operate the core functions of the application.

7.1 Smarter ASP.NET
• Purpose: hosting the infrastructure and servers.
• Role: infrastructure provider / data processor within contractual limits.
• Access: limited technical access to the extent required for maintenance and infrastructure, in accordance with the applicable contractual arrangements.

7.2 Google Maps SDK
• We use Google Maps SDK as a technical service provider to display maps within the application and to enable the user to accurately determine the geographic location.
• We do not share or send any direct personal identifiers to Google (such as name, phone number, or email address) within the use of this service.
• Google, as an independent technical service provider (third-party service provider), may process certain technical or operational data (such as IP address, device identifiers, or performance or connection data), in accordance with its own privacy policy and terms of service.
• This processing takes place outside our direct control, and we do not fully control how such data is collected or used by Google.
• This service is used only for displaying maps and determining the location, and we do not use it for any advertising or marketing purposes.

7.3 Firebase Cloud Messaging (FCM)
• We use Firebase Cloud Messaging (FCM) as a technical service provider to send the notifications necessary to users.
• This service may require the sharing and processing of technical identifiers such as:
• FCM Token
• Firebase Installation ID
• or their equivalents
for the purpose of directing notifications to the correct device.

• Google, as the service provider, may also automatically collect and process certain technical data (such as IP address or device identifiers), in accordance with its own privacy policy.
• We do not send any direct personal identifiers (such as name, phone number, or email address) within notifications.
• The notifications themselves do not contain any sensitive personal data and are used only for operational purposes related to the service.
• We do not fully control how the data is processed by Google outside the scope of our services.
• We use Firebase Cloud Messaging only for sending operational notifications, and we do not use Firebase Analytics or Firebase Crashlytics or any behavioral tracking tools.

7.4 Artificial Intelligence Service via Our Web API
If the user chooses to use the artificial intelligence assistance service, processing is carried out through an internal intermediary mechanism and not directly from the application to the external provider.

Mechanism of Operation:
• The application sends the inquiry to the TADWIR PRO Web API.
• We carry out initial filtering to remove known personal identifiers to the extent possible.
• The text is sent, after data minimization and enhancement of anonymization, to the appropriate external provider within the approved service settings.
• The result returns first to our servers, then is returned to the user.

Safeguards:
• No direct connection is established between the application and the external provider for this purpose within this flow.
• We seek not to send direct user identifiers within the inquiry.
• Processing is carried out to the minimum extent necessary.
• The user is strongly advised not to enter names, phone numbers, addresses, or any personally identifiable information within inquiry texts.
• Important Notice: AI-generated responses are for general guidance and assistance purposes only and should not be relied upon alone in sensitive or essential matters without additional verification.

Third-Party Privacy Policy Links
• Smarter ASP.NET:
https://www.smarterasp.net/privacy
• Google:
https://policies.google.com/privacy
• Firebase:
https://firebase.google.com/support/privacy
• OpenAI:
https://openai.com/policies/privacy-policy

8.     Data Sharing with Third Parties

Summary:
We do not sell personal data, nor do we share it with third parties for marketing or advertising purposes.

Limited data may be processed only by technical service providers necessary for operating the functions of the application, within the limits necessary to provide the service. These entities include, for example, Google and Firebase.

The data that may be processed includes:
• IP address
• Device identifiers
• FCM Token or its equivalent

This is carried out exclusively for operational purposes, such as sending notifications or displaying maps within the application, and this data is not used for any marketing or advertising purposes by us.

These entities, as independent technical service providers (third-party service providers), may process or retain the data in accordance with their own privacy policies, which we do not fully control outside the scope of our services.

9. Security and Protection
   We implement a set of appropriate technical and organizational controls to protect personal data from loss, unauthorized access, disclosure, alteration, or destruction.

9.1 Technical Protection
• All data is encrypted during transmission using secure protocols such as HTTPS/TLS.
• Sensitive data is encrypted during storage using strong standards such as AES-256-GCM or their equivalents.
• Removal of geographic metadata from images where necessary.
• Use of techniques to reduce direct linkage to identity, such as tokenization, where applicable.
• Temporary and permission-limited access sessions for staff.
• Isolation of databases and services to the extent possible within the available infrastructure.

9.2 Monitoring and Auditing
• Audit logs for access to sensitive data.
• Periodic reviews of permissions.
• Alerts for unusual access where technically available.
• Periodic security tests and reviews according to operational capabilities.
• Periodic assessments of data protection impact as needed or upon operational expansion.

9.3 Organizational Controls
• Confidentiality and non-disclosure agreements with relevant staff.
• Periodic training on data protection.
• Application of the principle of least privilege (least privilege).
• Plans for handling security incidents and potential breaches.

9.4 Technical Disclaimer
• Despite our commitment to implementing appropriate and professional protection controls, no digital system can guarantee absolute security of 100% under all circumstances.

10. Data Retention Periods

• We retain data for the following reasons:
Operation of the service,
Protection of the system and prevention of fraud,
Compliance with legal obligations,
and resolution of disputes where required.

• Precise geographic coordinates: 60 minutes from completion of the service.
• Images and media associated with the request: 2 hours from completion of the service.
• Full request data: 24 hours from completion of the service, unless an operational or legal need requires a longer, specified, and justified period.
• Basic account data: until deletion is requested by the user, or after a period of inactivity (such as 12 months), unless there is a justified legal or operational need to retain it for a longer period.
• Audit and security logs: up to 30 days, or as required by legitimate security needs.

Backups
• Backups are retained for up to 7 days for technical continuity purposes only.
• All backups are encrypted using strong security standards.
• Backups do not contain sensitive data such as passwords in their original form, and the stored data is minimized to the minimum possible extent.
• Access to backups is restricted to authorized staff under strict security controls.

11. Justifications for Data Collection and Application Permissions
    We are committed to requesting the minimum permissions necessary to provide the service.

11.1 Location Permissions
• Approximate location (ACCESS_COARSE_LOCATION): Purpose: to verify the availability of the service in the general area, and to display nearby service providers or staff where required. Privacy: it does not determine the user’s precise location, but only a general area.
• Precise location (ACCESS_FINE_LOCATION): Purpose: to use the precise location once upon confirmation of the collection request. Scope: capturing the location only at the moment of submission, without subsequent tracking of the user’s movement. Transparency: a clear notice is shown to the user before submission, linking the permission to the execution of the request. Restrictions: location is not collected in the background for continuous tracking purposes.
• Location is not used for continuous tracking, in the background, or for advertising or analytical purposes.

11.2 Camera Permission (CAMERA)
• Nature: completely optional.
• Purpose: to enable the user to capture images of waste directly via the camera.
• Restrictions: we do not request permission to access the photo gallery for this purpose within the scope described here.

11.3 Internet Permission (INTERNET)
• It is used to connect to our servers, send requests, and receive data and updates necessary for operating the service.

11.4 Network State Permission (ACCESS_NETWORK_STATE)
• It is used to verify the availability of network connectivity before performing certain operations, to improve stability and reduce errors.

11.5 Notification Permission (POST_NOTIFICATIONS)
• It is used to send notifications related to the status of requests or important messages within the service.

11.6 Wake Lock Permission (WAKE_LOCK)
• It may be used to prevent interruption of certain short-duration active processes where technically required.

11.7 Google Notification Reception Permission
• It is used to receive push notifications delivered through the approved notification service.

11.8 Dynamic Protection Permission
• It is used to protect certain internal components from unauthorized access, according to the application architecture.

Permission Management
• The user can control application permissions through the device settings at any time. However, disabling certain essential permissions may affect the application’s ability to perform some core functions.

12. Protection of Children
    This application is not intended for children.
    We do not allow children under the age of 16 to use the application independently.
    The application must be used by those under this age under direct supervision from parents or legal guardians.
    We do not intentionally collect detailed age-related data for prior verification, and therefore we rely on user compliance and appropriate parental supervision.
    If we become aware that we have collected data relating to a child under the permitted age in a manner that violates this policy, we will take appropriate measures to delete such data as soon as possible.

13. User Rights and the Mechanism for Exercising Them
    The user has the right, in accordance with applicable regulations and the nature of the service, to exercise the following rights:

Rights
• The right to access the personal data that we hold about the user
• The right to correct or update inaccurate data
• The right to request deletion of data or the account, within legal and operational limits
• Upon execution of the deletion request, the data associated with the account is deleted, unless retention of some data is necessary for legal, security, or fraud prevention reasons
• The right to withdraw consent in cases where the processing is based on consent
• The right to object to certain types of processing that are not necessary for the service
• The right to request restriction of processing in certain cases
• The right to request a usable copy of the data where this is technically possible and legally permissible

Mechanism for Exercising
• Requests may be submitted via:
• Email: sup.tadwir@gmail.com
• Or through the tools available within the application, such as the "Delete Account" option
• The user may delete their account directly from within the application through the "Delete Account" option available in the menu, without the need to contact support.
• The user may also request deletion of the account via the dedicated link below.

Procedural Timeframes
• Acknowledgment of receipt of the request: within 72 hours where possible
• Processing of the request: within a maximum of 30 days, unless the nature or volume of the request or legal requirements require an additional period with appropriate notice

Account Deletion Link
• https://sites.google.com/view/tadwirpro/home/delete-account

14. Consent and Choice

14.1 General Consent
• The user is required to agree to:
• The Privacy Policy.
• The Terms of Use.
• The continue account creation button is not activated unless the required consent conditions are fulfilled within the interface.

14.2 Consent for Optional Services
When using certain optional services, such as uploading images, using artificial intelligence assistance, or certain sensitive permissions, the user grants consent to the processing associated with this use within the limits set out in this policy.

14.3 One-Time Location Consent
This constitutes explicit and specific consent to use the precise location once for the purpose of executing the request and directing the collection team, without using it for continuous tracking.

15. Legal Bases and Reference Standards
    We are an Algerian company registered in Algeria, and we primarily comply with the provisions of Algerian Law No. 18-07 on the protection of personal data, while benefiting from internationally recognized technical and organizational protection standards, including GDPR principles, as a best operational and technical practice.

We also comply, where applicable, with the requirements of relevant technical platforms, including Google Play requirements related to transparency, the minimization of data collection, and the protection of users.

We act as the data controller (Data Controller) with respect to the personal data that we collect and process through our services.

16. International Data Transfers and Cross-Border Processing
    As our services rely on digital infrastructure that may include hosting or technical services outside Algeria, such as Smarter ASP.NET servers located in the Netherlands, some data may be processed or hosted outside Algeria within the limits necessary to operate the service.

This may also include the use of technical services provided by third parties, such as Google (Google Maps and Firebase) or artificial intelligence service providers (such as OpenAI), which may result in the transfer of limited data to servers outside the country.

The data transferred may include, depending on the nature of the service used:
• Technical data (such as IP address, device identifiers, and FCM Token)
• Geographic location data when executing the request
• Inquiry texts in artificial intelligence services (when used on an optional basis)

In this context, we are committed to the following:

Our Commitments:
• Adoption of appropriate legal and organizational safeguards for data transfers
• Application of a level of protection equivalent to the standards applied within the scope of our service
• Limitation of transfers to the minimum necessary to operate the service
• Non-transfer of direct personal identifiers except where operationally necessary and in accordance with this policy

Consent to Transfer and Processing:
Upon the user’s agreement to the Privacy Policy and Terms of Use, the user explicitly consents to the processing of their data and its transfer, where necessary, for the operational purposes set out in this policy, including international transfers necessary to operate the service.

17. Types of Acceptable and Unacceptable Waste

Acceptable Waste
• Plastic, such as bottles, containers, and bags.
• Paper and cardboard, such as newspapers, magazines, and boxes.
• Metals, such as aluminum, iron, and simple scrap.
• Glass, such as bottles and recyclable utensils.
• Simple electronic waste, such as small dry batteries and cables.

Unacceptable Waste
• Medical or biological waste.
• Chemical or toxic waste, such as pesticides, paints, and concentrated cleaners.
• Explosive or radioactive waste.
• Any hazardous or legally prohibited materials.

Important Note
• In the event of an attempt to request the collection of unacceptable waste, we reserve the right to refuse the request.
• In the event of repeated violations, the account may be restricted or suspended in accordance with the applicable Terms of Use.

18. Our Collection Team and Contractual Safeguards
    All waste collectors working within our service are official employees belonging to us, and not independent contractors or external partners.

Contractual Relationship
• Direct employment by TADWIR PRO.
• Salaries and benefits within the internal system of the company.
• Subject to internal policies related to human resources, security, and privacy.

Operational Structure and Safeguards
• Formal employment contracts.
• Direct supervision by appointed supervisors.
• Periodic and mandatory training on privacy and security.
• Regular performance evaluation and compliance review.
• Commitment to confidentiality and non-disclosure agreements.
• Use of official systems only when handling customer data.

19. Data Protection Officer and Official Communication
    Our Data Protection Officer is responsible for overseeing matters related to data protection and compliance with applicable regulations within the scope of our activities.

Contact Details
• Title: Data Protection Officer / Representative – TADWIR PRO
• Address: 01 Rue de Liberté, Batna 05000, Algérie
• Email: sup.tadwir@gmail.com

20. Access to the Policy and Multilingual Availability

Users may access this policy at any time through:

Channels
• The privacy section within the application.
• The application page on Google Play.
• The official website.

Languages
• Arabic
• English
• French

Official Links
• Website link:
https://sites.google.com/view/tadwirpro/home
• Privacy Policy link:
https://sites.google.com/view/tadwirpro/ar/privacy-policy
• Terms of Use link:
https://sites.google.com/view/tadwirpro/ar/terms-of-use

21. Changes to the Policy
    We may update the Privacy Policy from time to time to reflect the development of our operational practices, or legal and regulatory requirements, or technical updates.

In the event of introducing material changes related to how personal data is processed or to user rights, we will notify users in advance before the changes take effect, whenever required or appropriate, by at least two means, such as:
A prominent notice within the application interface upon login.
A notification via the email registered in the account.

Continued use of the service after the updates take effect constitutes acceptance of the updated version of the policy, unless the law or the consent interface provides otherwise.

We also update the relevant disclosures on Google Play, including the Data Safety form, upon any material change.

22. Legal Compliance and Review
    We are committed to periodically reviewing this policy and our practices associated with it, and to taking reasonable steps to enhance legal and technical compliance, including:
    Periodic reviews of the policy.
    Updating arrangements with external service providers where necessary.
    Internal training on best practices.
    Periodic technical security reviews according to capabilities and requirements.

23. Reporting Security Breaches
    In the event of a security breach affecting personal data, we will take appropriate measures to contain the incident and reduce its effects, and we will notify the competent authorities and affected users when required by law or regulation, and within the applicable timeframes.

24. Contact Us

Official Communication Channels
• Email: sup.tadwir@gmail.com

Target Service Standards
• Response to inquiries: within 48 hours where possible.
• Processing of privacy requests: within a maximum of 30 days.
• Follow-up notification: within 72 hours where required.

25. Conclusion
    We thank you for your trust in TADWIR PRO. We are committed to protecting your personal data, providing a transparent and responsible service, and supporting a cleaner environment and a more sustainable future through operational and technical practices that take privacy and security into account.

You may visit our website via the following link:
https://sites.google.com/view/tadwirpro/home

WITH SINCERE APPRECIATION,
TADWIR PRO TEAM