Last Updated: 11 August 2025

Privacy Policy

At RIADVICE SUARL, we respect the privacy rights of users and recognize the importance of protecting your information.
This Privacy Notice explains how information (including personal data as defined under the General Data Protection Regulation, “GDPR”) is collected, retained, used, disclosed, and transferred by RIADVICE, and the available choices you have regarding your personal information.

This Privacy Notice applies to information collected, used, or shared by RIADVICE when you use or access our websites, products, mobile applications, or services (collectively, the “SahabDrive Services”), including when you attend a RIADVICE event or otherwise interact with us.

If you use the SahabDrive Services as part of a business, an entity, or a non-profit (collectively, “Organization”) that has an agreement with RIADVICE, then the terms of that agreement between the Organization and RIADVICE will supersede this Privacy Notice where the terms overlap.

We may change this Privacy Notice from time to time. If we make any changes, we will revise the date at the top of this Privacy Notice. If there are material changes, we may notify you or your Organization more directly by email or post a notice on SahabDrive’s website prior to the changes becoming effective. We encourage you to periodically review this Privacy Notice to stay informed about our data protection practices and the ways you can help protect your privacy.

  1. Collection of Information

We collect and use the following information to provide, improve, protect, and promote our Services:

  • Account information – We collect and associate with your account the information you provide to us when you sign up for an account, upgrade to a paid plan, or interact with SahabDrive (such as your name, email address, phone number, payment information, and billing address).
  • Your Stuff – Our Services are designed to allow you to store files, documents, photos, and other data (“Your Stuff”), collaborate with others, and work across multiple devices. To make this possible, we store, process, and transmit Your Stuff, as well as related metadata (e.g., file size, upload time, collaborators, and usage activity).
  • Usage information – We collect data on how you use the Services, including actions taken in your account (e.g., sharing, editing, viewing, creating, and moving files or folders).
  • Device information – We collect information from and about the devices you use to access the Services, such as IP address, browser type, device identifiers, and the web page visited before coming to our site. Device settings may also transmit location information to SahabDrive Services.
  • Cookies and similar technologies – Used to operate and improve our services, remember your settings, and understand user interactions. You can configure your browser to block cookies, but this may affect service functionality.
  • We partner with Microsoft Clarity and Microsoft Advertising to capture how you use and interact with our website through behavioral metrics, heatmaps, and session replay to improve and market our products/services. Website usage data is captured using first and third-party cookies and other tracking technologies to determine the popularity of products/services and online activity. Additionally, we use this information for site optimization, fraud/security purposes, and advertising. For more information about how Microsoft collects and uses your data, visit the Microsoft Privacy Statement.

  1. Use of Information

We use your information to:

  • Provide the products or services you request.
  • Communicate with you about products or services.
  • Verify registration and provide technical support.
  • Inform you about important product revisions or updates.
  • Process payments, including recurring charges you request.
  • Ensure compliance with applicable laws and prohibit the use of our services for illegal or harmful purposes, including but not limited to content promoting violence, hate, exploitation, or sexually explicit material prohibited under applicable moral and cultural standards.

We also collect log data (including your IP address and access time) for security, performance optimization, and statistical reporting.

  1. Legal Basis for Processing (GDPR)

We process your personal data based on one or more of the following legal grounds:

  • Contract performance – To provide the SahabDrive Services you have requested.
  • Consent – Where you have given clear consent for a specific processing activity.
  • Legal obligation – Where processing is necessary to comply with applicable laws.
  • Legitimate interests – To operate, protect, and improve our Services, provided such interests are not overridden by your rights.

  1. Data Retention

We retain your information as long as your account exists or as needed to provide the Services. If you delete your account, we initiate deletion within 30 days. Backups may retain data for a short period before permanent removal. We may also retain data where necessary to comply with legal obligations, resolve disputes, or enforce agreements.

  1. Who Has Access to Your Personal Information

Data Controller:
RIADVICE SUARL
Apartment B1, Residence Ramzi
2074 Mourouj 5, Ben Arous, Tunisia

We do not sell or rent your personal information. We may share it with:

  • Service providers and vendors (e.g., hosting, payment processing) acting on our behalf.
  • Third-party integrations that you choose to use within SahabDrive.
  • Legal or security purposes when required by law or to protect rights and safety.

All third-party processors are bound by GDPR-compliant Data Processing Agreements.

  1. International Data Transfers

All primary data storage is located within the European Union. If personal data is transferred outside the EU (e.g., when accessed from another region), we ensure adequate protection via:

  • European Commission Standard Contractual Clauses (SCCs)
  • Other legally recognized transfer mechanisms under GDPR

  1. Protection of Personal Information

  • Encryption in transit via TLS 1.2 or higher.
  • Encryption at rest using AES-256, as implemented by our hosting provider.
  • Role-based access controls to limit access to authorized personnel.
  • Security monitoring, auditing, and periodic testing of systems.
  • Planned future implementation of two-factor authentication for additional protection.

  1. Data Breach Notification

In the event of a personal data breach likely to result in a risk to your rights and freedoms, we will notify you and the competent supervisory authority within 72 hours, as required by GDPR.

  1. Children’s Privacy

SahabDrive is not intended for individuals under the age of 13, or the age of digital consent in their country (16 in the EEA without parental consent). We do not knowingly collect data from minors without parental or guardian approval.

  1. Your Rights

Under GDPR and applicable laws, you have the right to:

  • Access your personal data.
  • Request correction of inaccurate data.
  • Request deletion of your personal data.
  • Restrict or object to processing.
  • Receive a copy of your data in a machine-readable format (data portability).
  • Withdraw consent where processing is based on consent.
  • Lodge a complaint with a supervisory authority.

To exercise these rights, contact us at privacy@sahabdrive.com.

  1. Contact

For any privacy-related questions or concerns:
Data Protection Officer
Email: privacy@sahabdrive.com

If you are not satisfied with our response, you have the right to contact your local data protection authority.

Create your account