معلومات

سياسة الخصوصية

كيف نتعامل مع بياناتك

ما نجمعه، وكيف نستخدمه، والخيارات المتاحة لك.

آخر تحديث: فبراير 2026

1) Introduction

This Privacy Policy explains how Ofper ("we", "us", "our") collects, uses, stores, and protects your personal data when you use the Ofper B2B marketplace platform ("Platform").

We are committed to protecting your privacy and handling your data transparently. This policy applies to all users of the Platform, including buyers, suppliers, and visitors.

2) Data We Collect

2.1 Account Information

When you create an account, we collect:

Name, email address, and phone number
Company name, business type, and registration details
Country, city, and business address
Password (stored as a cryptographic hash, never in plain text)

2.2 Verification Documents

When you apply for verification, we collect:

Government-issued identification documents
Business registration certificates
Tax identification numbers
Financial references and certifications
Factory or facility documentation (for higher tiers)

2.3 Platform Activity

We collect data about how you use the Platform:

Listings created, RFQs posted, and messages sent
Search queries and browsing patterns
Transaction history and dispute records
Login timestamps and IP addresses

2.4 Technical Data

We automatically collect:

Browser type and version
Device type and operating system
Referring URLs and page views
Cookies and similar tracking technologies

3) How We Use Your Data

3.1 Platform Operation

Account creation and authentication
Verification processing and badge management
RFQ matching and supplier discovery
Messaging between buyers and suppliers
Search ranking and seller score calculation

3.2 Communication

Account notifications (verification status, RFQ matches, messages)
Platform updates and policy changes
Optional marketing communications (with your consent)

3.3 Safety and Security

Fraud prevention and detection
Content moderation and policy enforcement
Security monitoring and incident response

3.4 AI Features

Our AI features (translation, RFQ matching, spam filtering) process data with the following safeguards:

All AI processing uses PII-redacted data
Zero-retention policy: AI providers do not store your data after processing
No personal data is used to train AI models

4) Legal Basis for Processing

We process your data based on:

Contract performance: Providing the Platform services you signed up for
Legitimate interests: Fraud prevention, security, and Platform improvement
Consent: Marketing communications and optional features
Legal obligations: Tax reporting, regulatory compliance, and law enforcement requests

5) Data Sharing

5.1 With Other Users

Your public profile, listings, and company information are visible to other Platform users
Buyer and supplier information is shared when you engage in a transaction or RFQ
Reviews you leave are publicly visible

5.2 With Service Providers

We share data with trusted third-party service providers:

Supabase (database hosting and authentication)
Vercel (web hosting and content delivery)
Payment processors (for verification fee processing)
Email service providers (for notifications)

All service providers are bound by data processing agreements and may only use your data to provide services to us.

5.3 We Do Not Sell Your Data

We do not sell, rent, or trade your personal data to third parties for marketing or lead generation purposes.

6) Data Retention

Account data: Retained for the duration of your account, plus 2 years after deletion for legal compliance
Verification documents: Retained for the duration of badge validity plus 1 year
Messages: Retained for 3 years after account closure
Technical logs: Retained for 90 days
Anonymized analytics: Retained indefinitely

7) Your Rights

Depending on your location, you may have the following rights:

7.1 GDPR Rights (EU/EEA Users)

Right of access: Request a copy of your personal data
Right to rectification: Correct inaccurate or incomplete data
Right to erasure: Request deletion of your data ("right to be forgotten")
Right to restriction: Limit how we process your data
Right to data portability: Receive your data in a structured, machine-readable format
Right to object: Object to processing based on legitimate interests
Right to withdraw consent: Withdraw previously given consent at any time

7.2 How to Exercise Your Rights

8) Cookies

8.1 Essential Cookies

We use essential cookies for:

Authentication and session management
Language and currency preferences
Security (CSRF protection)

8.2 Analytics Cookies

We may use analytics cookies to understand how the Platform is used. These can be disabled in your browser settings.

8.3 No Third-Party Tracking

We do not use third-party advertising cookies or tracking pixels.

9) International Data Transfers

Your data may be processed in countries outside your country of residence. We ensure appropriate safeguards are in place, including standard contractual clauses approved by relevant data protection authorities.

10) Data Security

We implement technical and organizational measures to protect your data:

Encryption in transit (TLS) and at rest
Access controls and authentication requirements
Regular security assessments
Incident response procedures

11) Children

The Platform is not intended for individuals under 18 years of age. We do not knowingly collect data from children.

12) Changes to This Policy

We may update this Privacy Policy periodically. Material changes will be communicated via email or Platform notification at least 30 days before they take effect.

13) Contact

For privacy-related questions, data access requests, or complaints, contact us through the Platform's contact page.

For EU users, you also have the right to lodge a complaint with your local data protection authority.