ACTC PT Privacy Policy

This Privacy Policy explains and outlines how Ahdab Commuting and Trading Company SAL (ACTC) collects, uses, shares, and protects personal and non-personal information when you access or use the ACTC PT mobile application, website, and related services (collectively, the “Service”).

Summary: With your permission, the Service may access your device’s location data in order to provide location-based features, such as displaying nearby stops or relevant route information. You have full control over your location and notification preferences, which can be enabled or disabled at any time through your device settings

1) Data we collect

A. Information you provide

●     Support Communications: any messages, attachments, and contact information or details you submit when contacting our customer support team to request assistance or report issues.

●     Feedback and Engagement: Your ratings, comments, survey responses, and other feedback you voluntarily provide to help us improve the Service.

B. Information collected automatically

●     Location data: We may collect precise or approximate location information using GPS, Wi-Fi, or cellular signals to enable location-based features such as displaying nearby stops. If you enable Background Location access, the app may collect location data even when you are not actively using the Service to support these functionalities.

●     Device & diagnostics information: this includes your device’s IP address, device model, operating system and application version, language settings, crash reports, and other performance-related metrics to help us monitor and improve the Service’s reliability and functionality.

●     Usage data: Data related to your interaction with the Service, including in-app events such as screen views and taps, interaction timestamps of your activities, and referral information that indicates how you accessed the Service.

2) Why we use your data (purposes & legal bases)

We process personal data for specific, legitimate, and explicit purposes, applying transparency in how your information is handled and adhering to applicable data retention policies.

Our purposes & the legal basis we rely on:

●     To Provide, improve, and operate ACTC PT Service, including features such as trip planning, displaying nearby stops and estimated arrival times, managing user accounts and tickets, and delivering customer support.

●     To utilize your device’s location data whether precise or approximate, including optional background location access with your explicit consent, to power location-based functionalities such as nearby transit results, route guidance, and real-time service alerts.

Legal basis: your legal basis for location data processing is your prior consent. You have the right to withdraw this consent any time via your device’s settings; upon which we will immediately cease processing your location information.

Automated Decision-Making: ACTC does not engage in solely automated decision-making processes that produce legal effects or similarly significant impacts on users. All decisions affecting users involve human oversight and evaluation.

3) Data Sharing and Disclosure

●     ACTC does not sell, rent, or trade your personal data to third parties. We share your information only under specific circumstances, strictly governed by contractual obligations and privacy protections: Service providers (processors): We may share your data with trusted third-party service providers who perform functions on our behalf, such as hosting, analytics and crash reporting, customer support, user authentication and one-time password (OTP) services, payment processing, and mapping services. These providers are contractually obligated to process your data solely in accordance with our instructions and to implement appropriate security measures to protect your information.

●     Affiliates and corporate transactions: In the event of a corporate reorganization, merger, acquisition, sale of assets, or similar business transaction involving ACTC, your personal data may be transferred to affiliated entities or new owners as part of that transaction, subject to applicable data protection laws and confidentiality commitments.

4) Data Retention

●     We retain your personal data only for as long as necessary to fulfill the purposes described above, after which we securely delete or anonymize the information to protect your privacy. Location & diagnostics logs: retained for up to 90 days, after which the data is aggregated and anonymized to prevent identification of individual users.

●     Support tickets: retained for a period of 24 months following closure of the ticket, unless a longer retention period is required or permitted by applicable law or regulations.

Aggregated and anonymized data that cannot be linked back to any individual may be retained indefinitely for analytical, research, or service improvement purposes .

5) Security

We use and implement a comprehensive set of technical and organizational measures designed to protect your personal data against unauthorized access, disclosure, alteration, and destruction.

These measures include, but are not limited to:

●     Encryption of data in transit to safeguard information as it moves between your device and our servers.

●     Strict access controls and authentication protocols to ensure that only authorized personnel with a legitimate need have access to personal data.

●     Role-based permissions to limit data access according to job responsibilities.

●     Continuous monitoring and auditing of our systems to detect and respond to potential security threats promptly.

While no security system can guarantee absolute protection, we are committed to maintaining and regularly enhancing our security practices to protect your information to the greatest extent possible.

6) Use of Cookies, SDKs, and permissions

●     SDKs & cookies: to operate and enhance the functionality of the ACTC PT application, We use essential Software Development Kits (SDKs) for purposes including user authentication, crash reporting, and analytics. These tools help us maintain the application performance and improve the user experience while respecting your privacy.

●     Permissions (you control these in OS settings): The app may request certain permissions, which you can manage and modify at any time through your device’s operating system settings:

○     Location Access: This includes precise or approximate location data, as well as optional background location access, to enable features such as displaying nearby stops, providing estimated arrival times, and routing.

○     Notifications: Permission to send you service alerts and updates relevant to your transit experience.

We do not use advertising SDKs that trade in precise location.

7) Service communications & marketing

We may send you various types of communications to ensure you stay informed and receive the best possible experience while using the Service, including but not limited to:

●     Transactional/operational messages: These include important notifications such as service disruption alerts, security updates, account-related information, and other essential communications necessary for the operation and maintenance of the Service.

We are committed to respecting your communication preferences and privacy. Where applicable, you may opt out of receiving marketing or promotional messages, while transactional and operational messages will be sent as required to provide and maintain the Service.

8) Automated decision-making 

ACTC does not engage in automated decision-making processes that produce legal effects or similarly significant impacts on users without human involvement. While certain features, such as route suggestions and estimated time of arrivals are generated through automated algorithms to enhance and personalize your experience, these calculations are intended solely as informational tools and do not constitute binding decisions or actions.

Children’s Privacy

The Service is not intended for use by children under the age of 13. We do not knowingly collect personal data from children without parental consent. If we become aware that we have collected personal data from a child in violation of this policy, we will take steps to delete that information promptly.

9) Changes to this Privacy Policy

We reserve the right to update or modify this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or service offerings. When significant or material changes occur, we will provide you with clear and timely notice, which may include direct communication or prominent announcements within the Service.

Your continued use of the Service following any such updates constitutes your acceptance of the revised Privacy Policy. We encourage you to review this Policy periodically to stay informed about how we protect your information.

10) Contact us

Questions or privacy requests?

Email: support@ahdab.org