Daitan Solutions acknowledges that we must effectively store, manage, and protect the personal information provided to us, including but not limited to names, addresses, and any such information that may allow specific individuals to be identified (‘Personal Information’). All information will be managed in compliance with the following privacy policy brief.

Purpose of Use

Daitan Solutions will use all personal information provided exclusively for the following functions, and to the extent that is relevant to these unless explicitly stated otherwise.

1. In the execution of agreements, and the process of any transactions pertaining to the company’s business.
2. For communications, greetings, and acts of general etiquette relevant to the company’s business.
3. Providing information relevant to the company’s business.
4. In all audits, analysis, and research pertaining to the company’s business.
5. In the production and analysis of statistical information, as well as other processing of relevant personal information for the company’s use.
6. Exchanging information and communicating with industry and organizational stakeholders related to the company’s business; or
7. Any other activities related to or incidental to the above Purposes.

Disclosure of Confidential Information to Third Parties

Daitan Solutions pledges not to divulge confidential information to third parties without the explicit, and preliminary provision of consent by individuals to whom said information bears relevance i.e. ‘The Principal’, unless such disclosure is permitted or required by laws and regulations.

Joint Use of Personal Information

For information obtained by an inquiry from the principal (Company Name, Position, Address, etc.), the scope of joint users includes Daitan Solutions and its subsidiaries within and outside of Pakistan, in response to requests, demands, and inquiries. For Information obtained via the exchange of business cards (Phone number, Email address, etc.), the scope of joint users includes the company and its subsidiaries within and outside of Pakistan, for any relevant notification, communication, or dissemination of information.

Policy on Anonymously Processed Information

Daitan Solutions does not produce or provide anonymously processed information to any third party at this time.

Notification of Purpose of Use for Personal Information

In the event that a principal wishes to be notified about the purpose for which the principal’s personal information is being retained by Daitan Solutions, the company will inform the principal of such purpose only after verifying the identity of the principal (or his/her representative). Daitan Solutions may not be able to provide such information in whole or in part if: (i) there is a possibility of harm to the life, body, or property of, or any other rights or interests of, the principal or a third party, (ii) there is a possibility of harm to any of the company’s rights or legitimate interests, (iii) there is a possibility that such provision of information might interfere with the performance of affairs by a national or local government authority as prescribed by applicable laws and regulations to the extent that the company is required to cooperate with such performance, (iv) the purpose is clear, given the circumstances under which the personal information was obtained, or (v) such provision of information is prohibited under any applicable laws or regulations.

Dissemination of Personal Information to the Principal

In the event that a principal wishes to receive a disclosure of the retained personal data about the principal, records on third-party provision of personal information which constitutes a database that enables the company to search for personal information (the “Personal Data”), or records on receipt of the personal data from a third party, the company will, after verifying the identity of the principal (or his/her representative), make such disclosure either by electronic data or in writing at the selection of the principal (or if the principal has no preference, as selected by the company). Daitan Solutions may not be able to provide such information or records in whole or in part if: (i) there is a possibility of harm to the life, body, or property of, or any other rights or interests of, the principal or a third party, (ii) there is a possibility that the company’s proper execution of business could be seriously harmed, damaged or impeded, or (iii) such disclosure violates any applicable laws or regulations.

Correction, addition, or deletion of Personal Information

Any corrections, additions, or deletions made to retained personal information by Daitan Solutions, at the behest of the principal, will only be made after the identity of the principal has been verified. Daitan Solutions retains the right to refuse to make such correction if: (i) the contents of the retained personal data are factually accurate and correct, (ii) special procedures are set forth in applicable laws and regulations, or (iii) such correction is unnecessary.

Discontinuance of use and erasure of Personal Information

In the event that a principal desires the discontinuance of use or the erasure of the retained personal data about the principal, Daitan Solutions will carry out such discontinuance of use after verifying the identity of the principal (or his/her representative). Daitan Solutions has the right to refuse such Discontinuance of Use in the event that: (i) the reasons for discontinuance of use prescribed in the Act on the Protection of Personal Information are not met, such as where the retained personal data is properly handled by the company to the extent required to achieve any relevant purpose specified in advance or is collected in an appropriate manner, or (ii) the company takes alternative measures necessary to protect the rights and interests of the principal where the company has difficulty with the discontinuance of use. Please note that the discontinuance of any use, or the erasure of all or part of the retained personal information may prevent or impede the provision of any service or transaction requested by the principal.

Handling of Personal Information on our Website

(1) Use of Cookies

The company uses cookies on the company’s website (www.daitasol.com; the “Website”) in order to gain a better understanding of customer access to the website, which helps the company improve and make the website more useful and user-friendly. Although the company may identify browsers used by a customer and the status of browsing on the website through its use of cookies, the cookies will not be used to identify the personal information of customers.

(2) Use of Web Beacons

The Company uses web beacons on the website to obtain statistical information in order to improve the website’s relevance and usefulness. The web beacons will not be used to identify the personal information of customers but will be used solely for the purpose of understanding the status of browsing on the website.

(3) Use of Google Analytics

On the website, the company uses services provided by Google Inc. called ‘Google Analytics’ to ascertain the usage status of the website. ‘Google Analytics’ is a service that uses cookies to collect information about the usage trends of websites without identifying any user or person. ‘Google Analytics’ is managed and operated in accordance with the privacy policy of Google Inc. Please refer to the Google Inc. website for the ‘Google Analytics Terms of Service’ ‘Google Analytics Terms of Service’ and ‘Privacy Policy’. The company is not liable for any damage, loss, or disadvantage caused by the services provided by or any use of any ‘Google Analytics’ services.

(4) Acquisition of access history

The company records customer information in the form of access logs on the website. This includes information such as a user’s IP address, the type of browser used, and the frequency of access to the website, but such records do not include identifiable personal information. The access log will be used for statistics and analysis concerning the status of the use of the website, but will not be used for any other purpose.

(5) Security

The company uses SSL (Secure Sockets Layer protocol) and/or TLS (Transport Layer Security) on the Website to encrypt communications to protect personal information.

(6) External Links

This policy applies to personal information obtained through the website. However, in no event shall the company be responsible for any other websites that are accessed through or from the website.

Control of the Retained Personal Data

The company will take measures to control access to the retained personal data, restrict methods of taking out the retained personal data, and prevent unauthorized access from the outside, and will take other necessary and appropriate measures for preventing leakage, loss of, or damage to, the retained personal data and other security control of the retained personal data (the “Security Control Measures”). When taking the security control measures, the company will utilize the frameworks of related laws and regulations, guidelines, and information security systems, and appropriately implement technical security control measures and organizational security control measures, as follows:

（1）Technical security control measures

The company will control access to the retained personal data (such as physical and electronic management of access authority, measures to prevent unauthorized access, and supervision of access status).

The company will restrict the methods of taking out the retained personal data (such as measures against unauthorized removal outside the company using external storage media and e-mails).

（2）Organizational security control measures

Supervision of officers and employees (collectively, the “Employees”)

The company will appoint a manager who is responsible for managing personal information and clearly prescribe the responsibility and authority of the employees with regard to security control of the retained personal data.

The company will establish internal rules and manuals concerning security control of the retained personal data and have the Employees comply with them, as well as conduct appropriate compliance audits.

Supervision of outsourcing contractors

The company may outsource all or a part of the handling of the retained personal data. In such case, the company will select outsourcing contractors deemed capable of handling the retained personal data properly and implement necessary and appropriate management to ensure compliance by the outsourcing contracts with the obligations imposed on them by the company.

Methods and contact points for the application or request for disclosures, etc.

In case of any requests, relevant to paragraphs 6-9, the concerned party must send identity verification documents (copy of driver’s license, passport, insurance card, etc.) to the following mailing address.

support@daitansol.com

Policy Revision

The above privacy policy is subject to revision at the discretion of Daitan Solutions, to appropriately reflect changes in laws, regulations, and ancillary requirements.