Privacy Policy

Who We Are

Zamanat (“we,” “our,” or “us”) is a pioneering Shariah-Aligned tokenization platform currently in beta. Our website (https://www.zamanathq.com) is provided for informational purposes only. We are not a broker, dealer, or investment advisor, and we do not offer, solicit, or sell any tokens, securities, or other financial products at this stage. Nothing on this site constitutes an offer or financial advice. This Privacy Policy explains how we collect, use, and protect your personal data when you visit our site or submit information through our lead-capture forms.

What We Collect

We only collect personal information that you choose to provide or that is collected automatically for analytics:

Contact Information: When you fill out our embedded forms (powered by a third-party service, Typeform), we collect personal identifiers such as your full name, email address, and contact number.

Interest and Message: Our form will ask for your area of interest; for example, whether you are looking to tokenize assets, invest, or partner with us; and gives you the option to include a brief message. Providing a message is optional, but any information you choose to share in that field will be collected as part of your submission.

Usage Data: Like most websites, we use Google Analytics 4 (GA4) to gather technical data about how you use our site. This includes data such as your device or browser type, IP address, pages you visit, and the time spent on our site.

Note: Our site is intended for a general audience. We do not knowingly collect personal data from children under 18 years of age. If you believe a child has provided us with personal information, please contact us so we can delete it.

How We Use Your Data

We use the information we collect for the following purposes, all aligned with improving our platform and responding to your interest:

Business Development and Outreach: If you submit your contact details and express interest (e.g. in tokenizing assets, investing, or partnering), we will use your name and contact information to follow up with you. This may include reaching out via email or phone to provide information you requested or to discuss potential collaborations. You can opt out of these communications at any time (see Your Rights below).

Service Information and Support: We may use your provided information to respond to your inquiries or any messages you left for us.

Improving Our Site and Services: We analyze aggregate usage data (via Google Analytics) to understand how visitors use our website and to improve the content, navigation, and overall user experience.

Ensure Security and Compliance: We may use data (like IP addresses or user activity logs) to maintain the security of our website, prevent fraud or malicious activity, and enforce our terms of use. This is standard practice to protect our platform and users.

We rely on your consent to process personal data you provide through our forms (since you are actively submitting it to request information), and on our legitimate interests in improving our site and following up with prospective partners or users. These uses are balanced against your rights and privacy; we will not use your data in ways that are unexpected or intrusive. If we ever wish to use your personal data for a new purpose not described here, we will update this Privacy Policy and, if required, seek your consent.

Lawful Bases for Processing

We process personal data under the following lawful bases:

Consent: When you submit our form or opt in to updates, you consent to us using your details to respond and keep you informed. You may withdraw consent at any time.

Legitimate interests: To follow up on your stated interest (e.g., tokenize/invest/partner), to maintain and improve our website (including GA4 analytics), to ensure security, and to prevent misuse. We balance these interests against your rights and expectations.

Legal obligations: Where necessary to comply with applicable laws or respond to lawful requests.

Note: We do not currently process data on the basis of “performance of a contract” because the site is informational and there are no user accounts or transactions at this stage. If that changes, we'll update this section.

Sharing and Transfers of Data

No Sale of Personal Data: We do not sell or rent your personal information to third parties for their own marketing or commercial purposes. Your data is used solely for the purposes stated above, in connection with Zamanat's operations.

Service Providers: We may share your information with trusted third-party service providers who help us run our website and business. These include:

Form Provider: We use Typeform to power our embedded forms. When you submit your information through the form, it is processed and stored by Typeform on our behalf.

Analytics: As noted, we use Google Analytics (GA4) for website analytics. Google may process certain usage data (like IP address and device info) for analytics on our behalf. Google Analytics provides reports on website usage that help us understand traffic patterns.

Cloud Storage and Email: We store the personal data collected (such as form responses) securely in cloud-based storage systems. We may also use an email service platform to organize contacts or send communications to those who submitted their interest. Any such providers are also bound to protect your data and use it only under our instructions.

These third parties will only get the information necessary to perform their specific services. We require all service providers to handle your personal data with confidentiality and adequate security. They are not permitted to use or disclose your information for their own purposes.

Legal Disclosures: We may disclose personal information if required to do so by law or legal process such as in response to a court order, subpoena, or regulatory request. We may also disclose information if we believe in good faith that it is necessary to investigate or prevent fraud, security issues, or harm to Zamanat, our users, or the public; but only in compliance with applicable laws.

Business Transfers: Since Zamanat is a new and evolving venture, it's possible that in the future the business might undergo a reorganization, merge with another company, or be transferred as part of an acquisition. In such events, user information (like the contact list of those who have expressed interest) might be transferred to the new owners or partners, so that we or they can continue to serve you. If that happens, the same commitments made in this Privacy Policy will apply to your data, and we will notify you of any change in ownership or use of your personal information, as required by law.

International Data Transfers: Zamanat is designed for a global audience, and the infrastructure we use (Typeform, Google, cloud servers, etc.) may be located in multiple countries. This means your personal data might be stored or processed on servers outside of your home country. If you are located in the European Economic Area (EEA) or United Kingdom, your information might be transferred to servers in the United States or other jurisdictions. We will take appropriate safeguards to ensure that such transfers comply with applicable data protection laws and that your information remains protected.

These safeguards include one or more of the following:

• Only transferring to countries that have been deemed to provide an adequate level of data protection, or
• Using standard contractual clauses or other legally recognized transfer mechanisms to ensure your data is protected according to EU/UK standards.

By using our site or submitting your information, you understand that your personal data may be transferred to and stored in countries other than your own. However, no matter where your data is processed, we will maintain the same level of privacy protection as described in this Policy.

Data Retention

We will only retain your personal information for as long as necessary to fulfill the purposes for which you provided it, unless a longer retention period is required or permitted by law.

Specifically, we retain information you provide to respond to your inquiries and keep you updated on our progress. We periodically review our data and will securely delete or anonymize your information when it is no longer needed for these purposes, such as when you withdraw your interest or after a significant period of inactivity.

We may retain limited information for longer periods if necessary to comply with legal obligations or resolve disputes, such as maintaining records of consent or deletion requests. Our retention practices are designed to adhere to the principle of storage limitation.

Security Measures

We take the security of your personal data seriously and implement industry-standard measures to protect it. Our safeguards include:

Data Encryption & Storage Security: We store your personal information on secure cloud servers. Any sensitive transfers (for example, form submissions) are encrypted in transit via HTTPS. Where possible, we also employ encryption at rest. We maintain up-to-date firewalls and security software to prevent unauthorized access to our systems.

Access Controls: Access to personal data is restricted to authorized personnel who need it to perform their job (for example, the small Zamanat team members responsible for business development or website administration). We limit and monitor this access to reduce any risk of unauthorized disclosure. Our service providers are also required to maintain strict confidentiality and security standards.

Organizational Policies: We have internal policies and training in place to ensure that anyone handling personal data does so with care and integrity. We review our data handling practices and permissions periodically. If we ever enable additional features (like user accounts or transactions in the future), we will implement appropriate additional security measures (such as two-factor authentication, regular security audits, etc.).

Testing and Maintenance: Our website and infrastructure are monitored for vulnerabilities. We apply security patches and updates promptly to protect against known risks. We also backup critical data to prevent loss.

Despite all these measures, it's important to understand that no website or Internet transmission is 100% secure. While we do our best to protect your personal information, we cannot guarantee absolute security of data, especially data transmitted over the public internet. You share information at your own risk, and we encourage you to use caution (for example, do not reuse passwords or share sensitive information that is not asked for). In the unlikely event of a data breach that affects your personal information, we will notify you and the appropriate authorities as required by law.

Your Rights

You have rights regarding your personal data, and we are committed to honoring them. Depending on your jurisdiction and applicable law, these rights may include:

Right to Access: You can request access to the personal information we hold about you, including the purposes for which it's used and with whom it's shared.

Right to Correction: If your data is inaccurate or incomplete, you can ask for corrections. This applies to personal information stored by us. The CCPA also allows you to request updates to inaccurate information we process.

Right to Deletion: You can request deletion of your personal information if it's no longer needed, if you withdraw consent, or if the data has been unlawfully processed. CCPA lets you request this unless the data must be retained for legal reasons. We shall delete your data upon request in 30 days in accordance with the Data Protection Laws.

Right to Object to Automated Decisions: If automated systems like AI evaluate your job application, you can ask for a human review of those decisions.

Right to Data Portability: You may request your data in a portable, machine-readable format. This allows you to transfer it to another service provider, and we can assist in doing so directly where possible.

Right to Withdraw Consent: If you have given consent for data processing, you can withdraw it at any time, stopping further processing.

Right to Opt-Out of Sale of Personal Information: The CCPA gives you the right to opt out of the sale of your personal information. For clarification, we would like to confirm that we do not sell any personal information to third parties.

Updates to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or for other operational, legal, or regulatory reasons. If we make material changes, we will notify users by posting a prominent notice on our site or by other appropriate means. The “Last Updated” date at the top indicates when the latest changes were made. We encourage you to review this Privacy Policy periodically to stay informed about how we are protecting your information.

When we update the policy, we will also update the Effective Date. Continued use of our site after any changes to the Privacy Policy implies acceptance of the revised terms, unless applicable law requires explicit consent. In any case, if you disagree with the changes, you can always contact us to request deletion of your data.

Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or how we handle your personal data, please contact us at [email protected]

We value your privacy and will address any issues to the best of our ability. Thank you for trusting Zamanat with your information.