Skip to content
International Grading Agency
Back to Home
Legal

Privacy Policy

This document forms part of the legal framework of International Agency Group – IGA, and is read together with the Submission Terms, the Membership Terms, and the General Terms. It is aligned as far as possible with the Egyptian Personal Data Protection Law No. 151 of 2020 and its executive regulations.

Last Updated:
1 / 6 / 2026
Version:
v1.0

1.Introduction and Scope

1.1This Policy sets out how the Company collects, processes, stores, protects, and shares personal data, and the rights of the data subject in respect of it.

1.2This Policy applies to the personal data processed by the Company through the Website, the Platform, the account, the Membership, the Submissions, and communication with the Company or the Authorized Dealer.

1.3This Policy prevails in everything relating to personal data, in accordance with the Order of Precedence in Article 4 of the General Terms. Item data and Public Verification Data are governed by the Submission Terms.

1.4The definitions in the General Terms apply to this Policy, and “personal data” means any data relating to an identified or identifiable natural person.

2.The Company’s Role in Processing

2.1The Company is a controller of the personal data it processes for its purposes set out in this Policy.

2.2The Authorized Dealer and the service providers may act as processors of the data on the Company’s behalf, within the scope of the specified purposes and under appropriate confidentiality and security obligations.

3.Data We Collect

3.1Account and Membership Data: name, email, phone number, address, and other contact data provided by the Customer.

3.2Identity Verification Data: a copy of the national ID card, collected only upon the purchase of a Membership for the purpose of verifying the Customer’s identity and fulfilling requirements. It is treated as sensitive data in accordance with Article 9.

3.3Submission Data: data associated with submission requests, such as the details of the Submission and correspondence, without banking data.

3.4Payment Data: the Company does not collect or store card or bank account data, as payment is made in cash or by offline transfers in coordination with the Authorized Dealer.

3.5Technical Data and Cookies: data collected automatically when using the Website, such as IP address, browser type, and usage data, through cookies necessary for operation and any basic analytics tools, in accordance with Article 8.

4.Sources of Data

4.1Data is collected directly from the Customer, from the Authorized Dealer in its capacity as the point of receipt, delivery, and coordination, and automatically through the use of the Website.

5.Purposes of Processing and Legal Basis

5.1The Company processes personal data for the following purposes:

5.1.1Creating the account, managing the Membership, and providing the services (performance of the contract).

5.1.2Verifying the Customer’s identity upon the purchase of a Membership (compliance and legitimate interest).

5.1.3Processing Submissions and communicating about them through the official channels and the Authorized Dealer (performance of the contract).

5.1.4Improving the Website and services and their security (legitimate interest).

5.1.5Fulfilling legal, tax, and regulatory obligations (legal obligation).

5.2The collection of the national ID card is based on the Customer’s consent upon the purchase of a Membership and on the legitimate interest in identity verification.

6.Sharing Data with Third Parties

6.1The Company does not sell personal data, and its sharing is limited to the following cases and within the scope of the purpose:

6.1.1The Authorized Dealer: to the extent necessary for receiving and delivering Items and coordinating with the Customer.

6.1.2Shipping Companies: to the extent necessary to perform the shipping borne by the Customer.

6.1.3The Hosting Provider (Contabo): to store data and operate the systems, in accordance with Article 7.

6.1.4The Company’s Internal System: to manage accounts, Submissions, Memberships, and verification.

6.1.5Competent Authorities: where there is a legal obligation, an official request, or to protect the Company’s rights.

6.2Processors undertake to process the data in accordance with the Company’s instructions and under appropriate confidentiality and security obligations.

7.Cross-Border Transfer and Data Storage

7.1Data is stored with the hosting provider Contabo on servers that may be outside the Arab Republic of Egypt, including within the European Union.

7.2The Company takes the appropriate controls to protect data transferred across borders in accordance with the Egyptian Personal Data Protection Law, including contracting on confidentiality and security obligations with the hosting provider.

7.3The Customer acknowledges and agrees to this transfer and storage within the limits permitted by law and for the purposes of providing the service.

8.Cookies

8.1The Website uses cookies necessary for its operation and security, and may use basic analytical cookies to understand and improve the use of the Website.

8.2The User may control cookies through the browser settings, noting that disabling necessary cookies may affect the functioning of the Website.

8.3The Website does not use third-party analytics tools except to the extent disclosed, and does not rely on Vercel Analytics.

9.Sensitive Data (National ID Card)

9.1The copy of the national ID card is treated as sensitive data, and is collected only upon the purchase of a Membership for the purpose of identity verification.

9.2Access to it is limited to authorized staff to the extent necessary, and it is stored with appropriate security measures.

9.3It is retained for the period necessary for the purpose for which it was collected and for the period required by legal obligations, then deleted or anonymized in accordance with Article 11.

10.Data Security

10.1The Company takes reasonable technical and organizational measures to protect data from loss or unauthorized access or use.

10.2The security of any transmission over the internet cannot be absolutely guaranteed, and the Customer bears responsibility for maintaining the confidentiality of its login data in accordance with the Membership Terms.

11.Retention Period

11.1The Company retains personal data throughout the period of activity of the account or Membership, and for the period necessary to achieve the purposes of processing.

11.2The Company retains data after the end of the relationship for the period required by legal, tax, and evidentiary obligations, then deletes or anonymizes it.

11.3The Company may retain Item data and Public Verification Data in accordance with the nature of its service and Population Reports, which are data not in themselves considered personal data.

12.Data Subject Rights

12.1In accordance with the law, the data subject has the right to: be informed of the data, access it, correct it, update it, erase it in the prescribed cases, object to processing, and withdraw consent without retroactive effect.

12.2These rights are exercised through the official channels, and the Company responds within the periods prescribed by law, and may request verification of the requester’s identity.

12.3The Company may be unable to execute some requests if they conflict with a legal obligation or a legitimate right, and notifies the Customer accordingly.

13.Data of Minors

13.1The services are not directed at those below the legal age, and the Company does not knowingly collect their data. If it becomes apparent otherwise, the data is deleted in accordance with the law.

14.Privacy Notices and Communication

14.1All correspondence relating to privacy is made through the official channels set out in the General Terms: the official email, the contact form, and the support channels within the dashboard.

15.Amendments

15.1The Company may amend this Policy, and the amendment takes effect from the date of its publication on the Website, and the Company notifies the Customer of material amendments by appropriate means.

16.Governing Language

16.1This Policy is issued in both Arabic and English, and in the event of a difference in interpretation, the Arabic text prevails as the authoritative text.

17.Governing Law and Jurisdiction

17.1This Policy is subject to Egyptian law, and the courts of Cairo have exclusive jurisdiction to hear any dispute, without prejudice to the data subject’s right to resort to the authority competent for personal data protection in accordance with the law, in accordance with Articles 5 and 6 of the General Terms.

Have questions about this document?

Contact Us