Privacy Policy

How Himilco collects, protects, and handles your data.

Last updated: June 7, 2026 · Version 1.4 · Compliance: GDPR, DIFC Data Protection Law · Jurisdiction: DIFC, Dubai UAE

Data encryption

AES-256

Third parties

Zero data sales

Retention

Contractually required only

Jurisdiction

DIFC, Dubai UAE

On this page

01. Data Controller
02. Data We Collect
03. How We Use Your Data
04. Anonymity & Identity Protection
05. Data Sharing
06. Data Storage & Security
07. Retention Periods
08. Your Rights
09. Cookies
10. Children's Privacy
11. Changes to Policy
12. Contact Us

01. Data Controller

Himilco Technologies Ltd. is the data controller for personal information collected through the platform. Registered address: DIFC, Dubai UAE. Data Protection Officer: legal@himilco.com.

02. Data We Collect

Category A — operator only (encrypted vault)

·Real full name
·Government ID documents
·Selfie verification
·Bank account details
·LinkedIn profile URL
·Registration IP and device

Category B — anonymized (on platform)

·Anonymous platform code (H-XXXX/MEA-XXXX)
·Sector and geography selections
·Performance statistics
·Platform activity
·Anonymous ratings received

Data type	Purpose	Legal basis
Identity documents	Verification	Legal obligation
Email address	Account contact	Contract
Platform activity	Security/monitoring	Legitimate interest
Device information	Security	Legitimate interest
IP addresses	Fraud prevention	Legitimate interest

03. How We Use Your Data

·Identity verification and clearance
·Platform security and fraud prevention
·Deal facilitation and chamber management
·Legal compliance and record keeping
·Communication about your account
·Enforcement of non-circumvention clauses

04. Anonymity & Identity Protection

Your real identity is stored in encrypted vaults visible only to the platform operator under strict access controls. It is never shared with other parties or hunters. Only: Legal authorities with valid court orders, DIFC arbitration panels in disputes.

Himilco DOES NOT sell, rent, or trade personal data to any third party. Data may be shared ONLY with:

·Law enforcement (valid court orders) — encrypted vault data only
·Document (e-signatures) — encrypted signing only
·Postal (email delivery) — encrypted transmission only
·DIFC arbitration upon valid claim

06. Data Storage & Security

Server location: Hostinger KVM 1

Jurisdiction: UAE hosted infrastructure

Measure	Implementation
Encryption at rest	AES-256
Encryption in transit	TLS 1.3
Access control	Role-based (RBAC)
Audit logging	All operator actions
Backup	Daily encrypted backups
Penetration testing	Quarterly

07. Retention Periods

Data type	Retention period
Identity documents	7 years (legal requirement)
Chamber messages	Permanent (legal evidence)
Call recordings	Permanent (legal evidence)
Payment records	Permanent (legal requirement)
Account data	Duration of account + 5 years
IP logs	90 days

08. Your Rights

Under DIFC Data Protection Law

·Right to access your data
·Right to correct inaccurate data
·Right to data portability
·Right to object to processing
·Right to erasure (where legally permissible)

Erasure requests cannot override legal retention requirements or active non-circumvention obligations.

09. Cookies

Cookie	Purpose	Duration
session_token	Authentication	7 days
csrf_token	Security	Session
preferences	Configuration	1 year
analytics	Performance (anonymous)	90 days

10. Children's Privacy

The platform is not directed to children. Himilco does not knowingly collect personal data from anyone under the age of 18.

11. Changes to Policy

Himilco may update this policy from time to time. Material changes will be reflected in the version number and last-updated date above.

12. Contact Us

Data Protection Inquiries

Email: privacy@taniterra.com

Response time: Within 72 hours

Postal address: DIFC, Dubai, UAE