Privacy Policy

Last Updated on: 20-09-2025 10:00

1. Introduction

Shory United Insurance Brokerage is committed to protecting the privacy of its customers’ and platform users’ personal data and to full compliance with the Personal Data Protection Law (PDPL) of Saudi Arabia and all relevant regulations. This policy outlines how your personal data is collected, processed, protected, and your rights in this regard.

2. Purpose of Data Collection

We collect and process your personal data for the following legal and business purposes:

  • To complete and execute insurance aggregator services.
  • To provide insurance quotes and services tailored to your needs.
  • To communicate with you regarding our services or your inquiries.
  • To improve the quality of our services and user experience.
  • To comply with legal and regulatory requirements.

3. Personal Data Collected

Shory may collect and process the following categories of personal data, including but not limited to:

  • Identification Data: Name, national or residency ID number, date of birth, nationality.
  • Contact Information: Phone number, mailing address, email address.
  • Financial Data: Bank account details, payment card information, financial transaction records.
  • Insurance Data: Type of insurance, policy number, claims information.
  • Health Data: Medical records and health status, when necessary and for legally authorized purposes.

4. Methods of Data Collection

Your personal data may be collected through various channels, including:

  • Electronic or paper forms you fill out.
  • Direct communication with us via phone, email, or our digital platforms.
  • Integration with authorized entities and systems for data exchange, when required.

5. Data Access

  • Customers with active accounts have the right to access and update their personal data.
  • Internal access to data is restricted to authorized employees only, as required for their duties.

6. Data Sharing

Your personal data may be shared with the following parties:

  • Licensed and authorized insurance companies.
  • Regulatory and government authorities upon lawful request.
  • Authorized third parties providing related services, including subprocessors, under the following conditions:
    • Obtaining prior written consent.
    • Signing a contract outlining data protection obligations.
    • Ensuring their compliance with the PDPL.
    • Regular monitoring and auditing of their protection measures.

7. Data Subject Rights

As a data provider, you have the right to:

  • Know the purposes for which your data is being collected and processed.
  • Access, correct, or update your personal data.
  • Withdraw consent for processing (unless there is a legal basis to continue processing).
  • File complaints with the relevant authorities if you believe a violation has occurred.

8. Data Security

We apply appropriate technical and organizational measures to protect your data from:

  • Unauthorized access or disclosure.
  • Loss, damage, alteration, or unlawful processing.

9. Breach Notification

In the event of a security breach affecting your data, we will notify you and the relevant authorities immediately, in accordance with the law.

10. Cross-Border Data Transfers

Your personal data will not be transferred outside Saudi Arabia unless prior written consent is obtained and an adequate level of protection is guaranteed, equivalent to applicable standards in Saudi Arabia.

11. Data Retention Period

We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected or as required by law. After that, it will be securely deleted or destroyed.

12. Policy Updates

This policy may be updated from time to time. You will be notified of any changes through our website or your registered contact information.

Contact Us: SC@shory.sa

Top Insurance Providers, All in One Place in KSA | Shory