Overview & Scope

TamamPOS ("we", "our", "us") is a high-performance cloud-based POS system engineered for retail and restaurant sectors in Saudi Arabia and international markets. We are dedicated to maintaining the highest standards of privacy and data security for your business records.

By registering an account or using TamamPOS services, you acknowledge and accept the data practices described in this Privacy Policy.

Information We Collect

• Business Credentials — CR number, VAT certification, company details
• Account Information — Authorized names, emails, verified phone numbers
• Operational Data — Transaction logs, inventory, and sales performance
• Technical Data — Device identifiers, IP addresses, and usage patterns
• Geolocation — Optional, used for logistics and regional compliance

How We Use Your Data

• Cloud synchronization & real-time POS services
• Secure payment processing & subscription billing
• Advanced system performance analytics
• Priority technical support & assistance
• ZATCA Phase 2 e-invoicing compliance

Data Sharing & Transparency

We uphold a strict No-Sale policy for personal data. Your data will never be sold, leased, or bartered to third-party marketing brokers. Data is shared only with essential infrastructure partners:

Our platform utilizes AES-256 bit encryption for all records at rest, alongside TLS 1.3 transport security for all data in motion. Our servers operate behind continuous Web Application Firewalls (WAF) with automated hourly backups across geo-redundant storage arrays, maintaining a 99.9% uptime index.

Granular Data Control & User Rights

As a registered business subscriber, you retain full authority over your corporate data assets:

Saudi Arabia Regulatory Alignment

TamamPOS is fully aligned with the Saudi Personal Data Protection Law (PDPL) issued via Royal Decree No. (M/147) and ZATCA's technical requirements for e-invoicing. All primary user data is hosted strictly on certified local servers within the Kingdom of Saudi Arabia.

Global Standards & Data Retention

While engineered specifically for KSA compliance, TamamPOS integrates privacy blueprints inspired by the European GDPR and ISO/IEC 27001 models, matching the benchmarks maintained by international SaaS leaders like Shopify, QuickBooks, and Lightspeed.

We retain account metadata and transaction snapshots for the full duration of your active subscription. Following account cancellation, data enters a 30-day grace period for complete export, after which it is permanently and securely overwritten from our active servers.

Policy Updates

We reserve the right to alter this document to reflect shifting regulatory requirements or software changes. Material updates will be clearly published across the admin dashboard or dispatched directly to your registered owner email address.