Batir Law Firm (the “Firm”) is committed to providing exceptional legal services according to the highest standards of professionalism and transparency. Our methodology is based on an integrated system of policies and procedures that ensure the delivery of professional legal services that exceed our clients’ expectations and foster mutual trust in our business relationships.

This is in accordance with:

• The Personal Data Protection Law and its Implementing Regulations
• International Information Security Standards
• Best Professional Practices in the Field of Law

This policy covers:

• All personal data of clients
• Information provided through our website
• Data related to legal services
• Relevant correspondence and documents

• Personal Data: Any information related to a specific or identifiable natural person
• Processing: Any operation performed on personal data
• Client: Any natural or legal person benefiting from our services
• Website: The official website of Batir Law Firm

1. Identity Information

   • Full name
   • National ID/ Residency/ Number
   • Date of birth
   • Nationality

2. Contact Information

   • Email address
   • Phone numbers
   • Postal address
   • Residence address

1. Browsing Data

   • IP address
   • Browser type and version
   • Operating system
   • Visit timing

2. Interaction Data

   • Activity log
   • Preferences
   • Inquiries and requests

• Providing legal services
• Managing client accounts
• Communicating about services

• Improving service quality
• Service development
• Research
• Legal compliance

1. Core Security Systems

   • Providing SSL/TLS encryption for communications
   • Multi-level firewalls
   • Intrusion detection and prevention systems (IDS/IPS)
   • 24/7 security monitoring

2. Backup Procedures

   • Daily backups
   • Secure external storage
   • Data recovery plan
   • Regular system testing

• Employee training on cybersecurity
• Limited data access policies
• Confidentiality agreements with employees
• Procedures for handling data breaches

1. Access Rights

   • Request a copy of personal data
   • Review processing records
   • Identify data collection sources
   • Obtain information on retention periods

2. Control Rights

   • Correct inaccurate data
   • Update outdated information
   • Request deletion of personal data
   • Object to data processing

• Submit a written request
• Provide proof of identity
• Specify the request scope
• Response time not exceeding 30 days

1. Necessary

   • Login procedures
   • Website security
   • Basic browsing functions

2. Analytical

   • Traffic analysis
   • User behavior
   • Website performance

3. Functional

   • Language preferences
   • Display settings
   • Saved information

4. Advertising

   • Content personalization
   • Experience optimization
   • Marketing analytics

• Trademarks
• Legal content
• Designs and logos
• Published materials

• Prohibition of unauthorized copying
• Prevention of commercial use
• Trademark protection
• Republishing conditions

• Accuracy of provided information
• Use of the website
• External links
• Service outages

• Gross negligence
• Willful misconduct
• Legal violations
• Breach of contractual terms

• Email: info@batir.sa
• Phone: +966 55 97 22222
• Platform X : @batirlaw

• Working hours: 9:00 AM - 5:00 PM
• Standard response time: 48 hours
• Urgent cases: 24 hours

• Periodic review every 6 months
• Immediate update for legal changes
• Publication of the updated version on the website

• Date of last update
• Summary of changes
• Effective date
• Version number