Pursuant to the Saudi Personal Data Protection Law (PDPL)
We collect personal data necessary to provide AI safety and governance services. This includes: full name, company name, email, phone number, and technical usage metadata. Data is collected directly from you when requesting a demo or registering for the service.
We process personal data to deliver the AI Safety OS, verify licenses, and monitor compliance. The legal bases for processing are your explicit consent given when using the platform, or our legitimate interest in securing our environments and protecting enterprise clients from cyber threats.
Under the Saudi Personal Data Protection Law (PDPL), you have the right to: be informed about how your data is processed, access your personal data and request a copy, rectify or update inaccurate data, request the destruction of data when there is no longer a legal basis to keep it, and withdraw your consent at any time.
We adhere to the highest cybersecurity standards to protect your data. We deploy PII Redaction to automatically sanitize sensitive data and implement our proprietary AI Firewall. All data is encrypted in transit and stored in highly secure, localized servers within Riyadh, Kingdom of Saudi Arabia.
We retain personal data as long as your account is active, as necessary to provide our services, or to comply with Saudi regulatory requirements. We do not sell, rent, or share your personal data with third parties unless we have your explicit consent or are required by regulatory or judicial authorities.
Use these crawlable links to continue through Bright AI services and implementation pages.