Last Updated: 06/03/2025

At Anahna By PROWEBTECH, we place the utmost importance on privacy and the protection of personal data for all our users, whether they are customers, delivery partners, or restaurant partners. This privacy policy aims to transparently explain the types of data we collect, the purposes for which they are used, the measures in place to protect them, and your rights regarding your data.

1. Data Collected

When using our application, various categories of data may be collected:

Customer personal data: This includes, among other things, name, surname, phone number, delivery address, email address, and payment information, which are securely processed and never stored in plain text on our servers.

Delivery partner data: In addition to identification information such as name, surname, phone number, and email address, we may also collect a copy of your ID, banking information (IBAN) for payment of earnings, and geolocation data necessary for proper delivery operations.

Technical data: When using the app, we may automatically collect your IP address, device type, operating system, and browsing data for analytics and service improvement purposes.

2. Use of Data

The collected data is used exclusively to ensure the proper functioning of our platform and to optimize the user experience. Specifically, it allows us to:

• Manage, process, deliver, and track orders placed through the application.
• Communicate with users regarding their account or orders.
• Monitor delivery partner performance and routes to ensure service quality.
• Ensure platform security, prevent fraudulent activity, and comply with legal obligations.
• Analyze usage behavior to continuously improve the app’s usability and features.

3. Data Sharing

Collected data is never sold. However, it may be shared in strictly necessary cases, including:

• With partner restaurants for order preparation and management.
• With delivery partners to enable efficient order delivery.
• With competent administrative or judicial authorities, in strict compliance with legal and regulatory obligations.

4. Storage and Security

Personal data is securely stored on servers that comply with current standards, either internally or with duly certified providers. We have implemented rigorous technical and organizational measures to protect data against loss, unauthorized access, disclosure, or alteration.

5. Data Retention

Data is retained only for as long as necessary for the purpose for which it was collected, while your user account remains active. Uninstalling the app does not automatically delete your data. For permanent deletion, you must submit an explicit request via email, which will also result in the closure of your account.

6. Your Rights

In accordance with data protection regulations, you have the following rights:

• Right of access: You can request access to all personal data we hold about you.
• Right to rectification: You can correct any inaccurate or incomplete information about you.
• Right to erasure: Under certain conditions, you can request the deletion of your personal data.
• Right to restriction of processing: You can request that your data be restricted in certain legally defined situations.
• Right to object: You can object to the processing of your data, particularly for direct marketing purposes.
• Right to data portability: You can receive your data in a structured format or request its transfer to another data controller.

To exercise these rights, please contact us via email at: contact@anahna.com.

7. Cookies and Similar Technologies

Our app may use cookies or similar technologies, mainly to ensure proper functionality, remember certain user preferences, and analyze general usage of the service for continuous improvement. You can manage these cookies from your mobile device settings.

8. Data Security Measures

We have implemented enhanced technical and organizational measures to ensure the security of personal data. This includes encrypting sensitive data during transactions, securely storing information, implementing strict access controls, and regularly conducting audits and risk analyses to detect and correct potential vulnerabilities.

9. Data Breach Management

In the event of a security incident affecting personal data, we commit to informing affected users and regulatory authorities within 72 hours, in accordance with the law. We will immediately take all necessary measures to correct the breach, prevent recurrence, and provide support to affected users.

10. Complaints and Supervisory Authority

If you believe your rights are not being respected, you have the right to file a complaint with the competent authority, namely the National Commission for the Control of Personal Data Protection (CNDP).

11. Changes to the Privacy Policy

This privacy policy may be updated at any time to adapt to legislative, regulatory, or technological changes. In the event of significant changes, you will be notified via an in-app notification or email.