Introduction

Welcome to the Privacy Policy of Sobhy Girgis Sons. At Sobhy Girgis Sons (“we,” “us,” or “our”), we value your trust and are committed to protecting your personal information. This Privacy Policy outlines how we collect, use, and share your information, as well as your rights regarding your data.

We operate the e-commerce website sobhy-girgis.com (the “Site”), which serves customers exclusively within Egypt. The Site is available in both English and Arabic for your convenience. All transactions are conducted in Egyptian Pounds (EGP), and deliveries are limited to select governorates across Egypt.

To complete a purchase on our Site, users are required to create an account. In addition to our own product offerings, we allow select trusted business partners to sell their products through our platform. This vendor feature is restricted to approved business entities and is not available to the general public.

This Privacy Policy applies to all users of our Site and services, including those who log in via Facebook or Google. By accessing or using our Site or services, you agree to the collection and use of your information as described in this Privacy Policy. We are committed to handling your data in accordance with applicable data protection laws and regulations in Egypt.

Information We Collect

When you use our Site or interact with us, we collect certain personal information to provide and improve our services. This information includes:

  • Account and Contact Information: When you register or make a purchase, we collect your name, email address, phone number, and a login password. These details are necessary to create your account, communicate with you, and process your orders.
  • Shipping and Delivery Information: We collect your shipping address and area (governorate) to deliver products to you. If an order is being fulfilled by one of our partner vendors, your delivery details will be shared with that vendor to facilitate the delivery (see Sharing Your Information below).
  • Payment Details: To process payments for your orders, we collect information related to your payment method. This may include billing address and transaction details. Note: We do not store full credit/debit card numbers or sensitive payment data on our servers. Payments are handled securely by our accredited payment gateway, and only the necessary information (such as a transaction ID or payment confirmation) is retained.
  • IP Address and Device Information: When you visit our Site, our system may automatically record your IP address and basic device information. We use this data for purposes like fraud prevention, security monitoring, and to optimize our website’s performance for your device. This information also helps us approximate your location to ensure we service your area (since we deliver only within certain regions of Egypt).
  • Third-Party Login Information:
    • Facebook Login: If you choose to log in via Facebook, we receive the information that you authorize Facebook to share with us – specifically your name and email address from your Facebook profile. This information is used to quickly create your user account on our Site or to authenticate you into your existing account.
    • Google Login: Similarly, if you choose to log in using your Google account, we receive the details that you authorize Google to share with us. Typically, this includes your name and email address. This information is used to create or authenticate your account on our Site. We do not access any other personal data from your Google profile beyond what you permit.
  • Communications: If you contact us through our live chat, Facebook Messenger, email, or phone, we may keep a record of that correspondence (including contact details and the content of your message) to assist you and improve our customer service.
  • OTP and SMS Communications: For enhanced security, particularly during login or certain transactions, we send One Time Password (OTP) messages through a local SMS service provider. These OTPs help verify your identity and add an extra layer of security to your account access.

We collect only the information that is necessary for the purposes described in this policy. You have the choice not to provide certain personal data, but please note that some information is required for using core features of our Site (for example, creating an account or placing an order).

Use of Facebook Login

Our Site offers the option to log in or sign up using your Facebook account for your convenience. Using Facebook Login is entirely optional. If you choose to use this feature, here’s how we handle your data with Facebook:

  • Data Received from Facebook: When you log in via Facebook, Facebook may ask for your permission to share certain details with us. We only request access to your name and email address associated with your Facebook account. This information is used to quickly create your user account on our Site or to authenticate you into your existing account. We do not collect or receive any other data from your Facebook profile (such as your friends list or posts), and we never post anything to your Facebook timeline on your behalf.
  • How We Use Facebook Data: The name and email obtained from Facebook are treated like the account information you provide directly to us. We use your name to personalize your experience (for example, greeting you by name on the dashboard) and your email to communicate with you (for order confirmations, receipts, or support).
  • Facebook’s Privacy Practices: Your use of Facebook Login is also subject to Facebook’s own privacy policies. We recommend reviewing Facebook’s Data Policy to understand how they manage your credentials and any information shared with third parties. We do not control how Facebook uses your data; we only receive and use the data as described above.
  • Revoking Facebook Login: If you have linked your Facebook account and wish to revoke our access, you can do so through your Facebook account settings (under the Apps and Websites section). You can also contact us to help remove or update the Facebook-linked data on our end. You are free to switch to a standard email/password login on our Site at any time if you prefer.

By using Facebook Login, you consent to Facebook sharing your name and email with us. We handle this information securely and in accordance with this Privacy Policy.

Use of Google Login

For additional convenience, our Site also offers Google Login. If you choose to log in using your Google account:

  • Data Received from Google: Google may prompt you to allow access to your basic profile information when you log in using Google. Typically, this includes your name and email address. This information is used to create or authenticate your account on our Site.
  • How We Use Google Data: The data received from Google is processed in the same manner as the data obtained through Facebook Login. We use your name to personalize your experience and your email to communicate with you for essential notifications such as order confirmations or support inquiries.
  • Google’s Privacy Practices: Your use of Google Login is governed by Google’s own privacy policies. We recommend reviewing Google’s privacy policy to understand how your data is handled by them. We only receive and use the information as specified and do not access additional data from your Google profile without explicit permission.
  • Revoking Google Login: If you wish to revoke our access to your Google data, you can do so by adjusting the permissions in your Google account settings (typically under the “Security” or “Apps with account access” section). Alternatively, you can contact us for assistance in unlinking your Google account from our Site.

By using Google Login, you consent to Google sharing your name and email with us. We handle this information securely and in accordance with this Privacy Policy.

How We Use Cookies

Like most e-commerce websites, we use cookies and similar tracking technologies to provide necessary site functionality, improve your experience, and analyze how our Site is used. A “cookie” is a small text file that is stored on your device when you visit a website. We use cookies for several reasons:

  • Essential Cookies (WooCommerce): Our Site uses WooCommerce (the WordPress e-commerce platform) which sets certain essential cookies to enable shopping features. For example, WooCommerce uses cookies to keep track of your cart contents and session. Cookies like woocommerce_cart_hash and woocommerce_items_in_cart let us know when your cart data changes, and ensure that the items you add to your cart remain there as you browse the site. Another cookie, wp_woocommerce_session_, contains a unique ID for your session, allowing our system to retrieve your cart items from our database and associate them with you. These cookies are necessary for the shopping cart and checkout to function properly. They typically expire after your session (or within 1-2 days for the session ID cookie) and do not store any personal information – only a unique identifier and cart data.
  • Site Functionality Cookies: We may use additional first-party cookies to remember your preferences and improve functionality. For instance, if our site displays a one-time notice or announcement (such as a shipping notice or a special offer banner), a cookie may be used to remember that you’ve dismissed it so it doesn’t show repeatedly. We might also use a “recently viewed products” cookie to help you quickly find items you browsed. These cookies enhance your experience but are not strictly necessary.
  • Analytics Cookies: We use cookies from third-party analytics providers (such as Google Analytics and/or Facebook Pixel) to gather information about how visitors use our Site. These analytics cookies collect information about pages viewed, time spent on site, link clicks, and other usage data. The data collected is aggregated and anonymous – it does not personally identify you. We use this information to understand user behavior, which helps us diagnose technical issues, improve the speed and content of the website, and develop new features or services that enhance your shopping experience.
  • Advertising and Social Media Cookies: (If applicable) We may use tracking pixels or cookies from platforms like Facebook or Instagram to measure the effectiveness of our ads and to reach people who may be interested in our products. For example, the Facebook Pixel can help us show relevant ads to you on Facebook or measure conversions from Facebook ads. These technologies may track that you visited our Site and allow us to later advertise to you on those platforms. Any such usage will be in accordance with the policies of those platforms, and no personal contact information is shared from us to them via cookies.

Your Choices: When you first visit our Site, you may see a notice about our use of cookies. By continuing to use our Site, you agree to our use of cookies as described. You can control or delete cookies through your browser settings at any time. Most browsers allow you to block cookies or notify you before accepting them. However, please note that if you disable or reject essential cookies, some features of our Site (like maintaining your cart or staying logged in) may not work correctly.

We do not use cookies to store sensitive personal data or to run any form of sneaky tracking. All cookies used are intended to make our Site function smoothly or to help us understand and improve the user experience. For more details about specific cookies we use or to change your cookie preferences on our Site, you can contact us anytime (see Contact Us below).

How We Use Your Information

We use the personal information we collect from you for the following purposes:

  • To Process and Deliver Orders: We use your name, address, and phone number to fulfill your purchases. This includes processing your order, arranging delivery to your provided shipping address, and updating you on the status of your delivery.
  • To Process Payments: We use your provided payment details (and share them with our payment gateway) to charge you for your orders. This is done securely. We may also use your billing address or postal code for verification and tax invoicing purposes.
  • Account Management: Your email and password are used to create and secure your account on our Site. We use your contact details to authenticate your login (including Facebook or Google login if you choose that) and to manage your account (such as password resets or account preferences).
  • Communications and Customer Service: We use your email and/or phone number to send important updates related to your orders (e.g. order confirmations, shipping notifications) or changes to our services. We also use your contact information to respond when you reach out with questions, requests, or support inquiries. For example, if you contact us via live chat or Facebook/Google message, we will use your info to verify your identity (if needed) and assist you.
  • Personalization and User Experience: We may use data about your interactions (such as items viewed or cart contents) to personalize your experience on the Site. This could include suggesting related products, saving your cart for later, displaying the website in your preferred language, or remembering your last viewed category. The goal is to make shopping with us easier and more tailored to you.
  • Analytics and Improvement: Information like your IP address, device type, and how you navigate our Site is used to analyze overall usage trends and site performance. This helps us diagnose technical issues, improve the speed and content of the website, and develop new features or services that enhance your shopping experience. We rely on aggregated data for these purposes and do not make decisions about you specifically from analytics without your knowledge.
  • OTP and SMS Security: For added security, we send One Time Password (OTP) messages via a local SMS service provider. These OTPs are used during login or for confirming certain transactions to verify your identity and to protect your account from unauthorized access.
  • Vendor Partner Services: In cases where a product you purchase is sold by one of our authorized vendor partners, we use your information to coordinate with that vendor. For example, we may share the order and delivery details with the vendor so they can fulfill the order (see Sharing Your Information). We also use data to manage our relationships with these business partners, such as tracking sales and payments due to the vendor.
  • Security and Fraud Prevention: We may use personal information (like IP address or account activity) to monitor for and prevent fraudulent transactions, unauthorized access, or illegal activities. This includes verifying your identity when necessary, ensuring your account is used only by you, and using tools to detect fraud or abuses of our Site.
  • Legal Compliance and Enforcement: We use and retain personal data as needed to comply with our legal obligations (such as tax and accounting requirements) and to enforce our Terms and Conditions. For instance, we may use your information to resolve disputes, to ensure you are of legal age to form a contract if required, or to carry out identity verification if mandated by law for certain high-value transactions.

We will only use your personal data for the purposes we’ve outlined above. If we need to use your information for any other purpose, we will update this Privacy Policy or seek your consent when required by law. We do not engage in selling your personal information to third parties.

Data Storage and Security

We understand the importance of securing your personal data. We store all user information on secure cloud servers with reputable hosting providers. These servers employ advanced security measures to protect data from unauthorized access, loss, or alteration. Here are some of the ways we safeguard and manage your data:

  • Encryption: Our website is secured via SSL/TLS encryption (HTTPS), which means that any data you transmit to us (such as your login credentials or payment information) is encrypted in transit and cannot be easily intercepted. Sensitive data like passwords are encrypted (hashed) before being stored in our database, so that even our own staff cannot read them. For payment transactions, we use encrypted payment gateways – your card information is handled using industry-standard encryption by the payment processor, and we do not store your full card details on our servers.
  • Secure Cloud Storage: Your data is stored in a cloud environment that is protected by firewalls and continuous monitoring. Access to these servers is restricted to authorized personnel only, and we ensure that our cloud service provider maintains high standards of security compliance. Our servers may be located outside of Egypt (for example, in data centers with robust security certifications), but regardless of location, we ensure any data transfers are done lawfully and with adequate protection (in line with Egyptian data protection requirements).
  • Access Controls: Internally, personal data is only accessible to employees or partners who need it to perform their duties (for example, the fulfillment team accessing your address to ship an order, or customer support addressing an issue you reported). All such persons are bound by confidentiality obligations. Vendor partners who have access to customer orders see only the information necessary to fulfill those orders and are contractually required to protect your privacy and use the data only for that transaction.
  • Regular Audits and Updates: We regularly update our software, plugins, and systems to patch security vulnerabilities. Our platform (WooCommerce/WordPress and related systems) is maintained with security best practices. We also periodically review our data handling processes to ensure your information remains secure.
  • Data Retention: We retain your personal information only for as long as necessary to fulfill the purposes outlined in this policy, or as required by law. For example, order records may be kept to comply with accounting and tax obligations, and to handle any post-sale issues like returns or warranties. If you delete your account or request us to do so, we will securely remove or anonymize your personal data, except for any information we are required to keep for legal reasons.
  • Risk Management: We have measures in place to detect and prevent breaches or data loss. In the unlikely event of a data breach that affects your personal information, we will notify you and the appropriate authorities as required by law. We also encourage you to use a strong, unique password for our Site and to keep your login credentials confidential to help protect your own account security.

While we strive to protect your data with the highest standards, no method of transmission over the internet or electronic storage is 100% secure. Therefore, we cannot guarantee absolute security. However, we continuously update our security protocols to meet or exceed industry best practices and to comply with Egyptian cybersecurity regulations. Your trust is important to us, and we take all reasonable steps to secure your data.

Sharing Your Information

We treat your personal information with care and do not share it with third parties except in the circumstances described here. We do not sell or rent your personal data to unrelated third parties for their marketing purposes. We only share information as necessary to operate our business and provide our services to you, in the following ways:

  • With Service Providers and Partners: We share relevant information with trusted third-party service providers who perform services on our behalf. This includes:
    • Payment Processors: When you make a purchase, your payment details are transmitted to our payment gateway or financial institution to process the transaction. This will include the amount to charge and necessary billing information. Our payment processors are compliant with security standards (such as PCI DSS for card payments) and are authorized to use your information only to carry out the payment.
    • Shipping and Delivery Partners: If your order will be delivered by a third-party courier or delivery service, we provide them with your name, address, and phone number to complete the delivery. They are allowed to use this information only for delivering your order and related purposes (like contacting you if needed for delivery).
    • Vendor (Business Partner) Sellers: If you purchase a product that is sold and shipped by one of our partner vendors, we will share your order details with that vendor. This typically includes the product ordered, your name and shipping information, and contact details for coordination. The vendor will use this information solely to fulfill your order and is contractually obligated to protect your privacy and use the data only for that transaction.
    • Technology Providers: We use certain cloud and tech services (for example, web hosting, cloud storage, email service providers, analytics tools) that may process your data as part of their function. For instance, our email service will handle sending order confirmation emails to you, and analytics services (like Google Analytics or Facebook) will process usage data as described in How We Use Cookies. We choose providers who are reputable and have their own strong privacy and data security practices. They are not permitted to use your data for any purpose other than providing the service we have requested from them.
  • With Law Enforcement or Authorities: We may disclose personal information if required to do so by Egyptian law or legal process. For example, if we receive a valid court order, subpoena, or governmental request, or need to cooperate with an investigation (such as fraud or suspected illegal activity), we will share only the information that is legally required. We may also share information if we believe in good faith that such disclosure is necessary to protect our rights, your safety or the safety of others, or to respond to a legal claim.
  • Business Transfers: In the unlikely event that our company undergoes a business transaction such as a merger, acquisition, or sale of assets, user information (including personal data) might be transferred to the successor or acquiring entity. If this happens, we will ensure that the new owner is bound by terms that are at least as protective of your privacy as those in this policy, and we will notify you (for example, via email or a notice on our Site) of any such change in ownership or control of your personal data.
  • Aggregate or De-Identified Data: We may share information that has been aggregated or anonymized (so it does not identify you personally) with third parties for various purposes, such as analyzing trends in product purchases or user engagement. For instance, we might share statistics like “X% of our customers live in Cairo” or “most visited categories” with a business partner or in marketing material. This data will not contain any personal details that can identify any individual user.

In all cases of sharing, we ensure that only the minimum necessary information is disclosed. All third parties with whom we share personal data are required to handle it in compliance with this Privacy Policy and applicable data protection laws. They are given only the information they need to perform their specific service or function and are not permitted to use it for any other purpose.

If you have questions about who we share your information with, or specific third parties involved in handling your data, feel free to contact us for more details. We are transparent about our practices and will provide as much information as legally and practically possible.

Your Data Rights

We believe in giving you control over your personal information. Subject to Egyptian law and applicable regulations, you have the following rights regarding the data we hold about you:

  • Access Your Data: You have the right to know what personal information we have about you. You can view and access much of your data by logging into your account on our Site (for example, you can see your profile information, order history, and saved addresses). If you need additional details, you can request a copy of the personal data we hold about you by contacting us. We will provide this information as required by law.
  • Update or Correct Your Data: If any of your personal information is incorrect or has changed (such as your contact number or shipping address), you have the right to correct or update it. You can edit most of your details directly through your account dashboard on the Site. Alternatively, you can ask our support team via live chat or Facebook/Google communication to help update your information. We may need to verify your identity before making certain changes for security reasons.
  • Data Portability: In some cases, you may have the right to request a copy of your personal data in a commonly used, machine-readable format (for example, a CSV file). This is typically relevant if you want to transfer your data to another service. If applicable, we will assist with providing your data in such format upon request.
  • Withdraw Consent: If we are processing any of your personal data based on your consent (for example, sending marketing emails to which you subscribed), you have the right to withdraw that consent at any time. You can unsubscribe from marketing emails using the link provided in those emails, or adjust your account settings if available. For withdrawing consent for other services (like Facebook or Google Login), you can adjust your settings on those platforms or contact us for assistance.
  • Request Deletion (Right to be Forgotten): You have the right to request that we delete your personal data. If you no longer want us to have or use your information, you may request we remove it. You can do this by emailing us at help@sobhy-girgis.com with the subject line “Data Request” and let us know that you wish to delete your account or specific information. We will respond to confirm and process your request, erasing your personal data from our systems within a reasonable time frame, as long as we do not have a legitimate legal or business reason to retain it (for example, certain transaction records may need to be kept for financial reporting or fraud prevention). We will let you know if any information cannot be immediately deleted due to legal requirements, and we will do so as soon as those requirements lapse.
  • Object to Processing or Restrict Processing: In certain circumstances, you have the right to object to or ask us to restrict specific types of processing of your data. For instance, if you feel our use of your data for analytics or marketing is not justified, you can object to that. We will review such objections and comply with them if required by law. Generally, we do not engage in intrusive data processing, but you can always contact us with concerns.
  • Non-Discrimination: We will not discriminate against you for exercising any of these rights. For example, if you request deletion of your data, we will honor your request and not refuse you services just because you exercised your data rights. (Do note, however, that deleting essential data like your account information will naturally mean you can no longer use certain services, such as maintaining an active account or order history on our Site.)

How to Exercise Your Rights: Most updates or consent withdrawals can be done by you directly (e.g., updating profile info in your account, or unsubscribing from emails). For requests like data access or deletion, please contact us via email at help@sobhy-girgis.com. Use the subject line “Data Request” and clearly state your request (e.g., “I want to obtain a copy of my data” or “Please delete my account”). You may also reach out through our Contact Us details below or via our live chat/Facebook/Google communication channels for assistance. We may ask you to verify your identity to ensure that these rights are exercised by the correct person (we wouldn’t want someone else trying to delete or access your account data). We will respond to your request as quickly as possible, and in all cases within any timeframe required by law.

We are dedicated to upholding your rights and ensuring your satisfaction. If you have any questions about your privacy rights or need guidance on how to exercise them, just let us know – we’re here to help.

Legal Compliance

Sobhy Girgis Sons is an Egyptian company, and we handle personal data in compliance with all applicable local laws and regulations in Egypt. This includes the Egyptian Personal Data Protection Law (Law No. 151 of 2020) and any other relevant legislation or guidelines that apply to e-commerce and online privacy in Egypt. We regularly review our data practices to ensure they meet the obligations set forth by these laws.

Key points regarding our legal compliance:

  • Lawful Basis: We ensure that we have a lawful basis for collecting and processing your personal data. In most cases, this is because the data is necessary to perform a contract with you (for example, to deliver the goods you purchased), or because you have given consent (such as opting to use Facebook or Google Login), or because we have a legitimate business interest that is not overridden by your privacy rights (such as improving our services or preventing fraud). If Egyptian law requires consent or other conditions for certain data activities, we obtain such consent and abide by those conditions.
  • Data Protection Principles: We adhere to fundamental data protection principles: we process personal information fairly and transparently, we collect it for specified legitimate purposes and do not use it in ways incompatible with those purposes, we minimize the data we collect to what is necessary, we strive to keep it accurate and up-to-date, we store it only as long as needed, and we secure it diligently. These principles guide all our data handling procedures.
  • Data Transfer Abroad: If we ever need to transfer personal data outside of Egypt (for instance, storing data on an overseas server or sharing with a service provider in another country), we ensure that the destination country has adequate data protection measures in place or we use appropriate safeguards as required by Egyptian law. We recognize that the law may restrict transferring data to countries that do not offer the same level of protection, so we take steps to comply, such as using contracts that uphold privacy or obtaining necessary approvals.
  • Children’s Privacy: Our Site and services are not directed to children under the age of 13. We do not knowingly collect personal information from anyone under 13 years old without parental consent, in compliance with Egyptian child protection guidelines. If we discover that a child under 13 has provided us with personal data without proper consent, we will delete it. (If you are a parent or guardian and believe we might have information about a minor, please contact us so we can investigate and take appropriate action.)
  • Regulatory Oversight: We are prepared to cooperate with any regulatory authorities in Egypt responsible for data protection. If the law designates a Data Protection Authority or similar body, we will respond to inquiries or directives from such authorities and keep them informed of our data processing activities when required. Should you feel we have not addressed a privacy concern satisfactorily, we will advise you on how you might formally lodge a complaint with the relevant authority, although we encourage you to first allow us to resolve the issue directly.
  • Continued Compliance: The landscape of privacy law is evolving. We stay informed about changes in Egyptian data protection laws and adjust our policies and practices accordingly. Our commitment is to not only comply with the minimum requirements, but to cultivate trust with our users by being transparent and accountable in how we handle personal data.

In summary, we take our legal obligations seriously and integrate privacy compliance into our business processes. Our aim is to not just meet the minimum requirements, but to cultivate trust with our users by being transparent and accountable in how we handle personal data.

Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technologies, legal requirements, or for other operational reasons. When we make changes, we will post the updated policy on this page and change the “Last Updated” date at the bottom. If the changes are significant, we may also inform you through additional means, such as by sending an email notification or by placing a prominent notice on our homepage.

We encourage you to review this Privacy Policy periodically to stay informed about how we are protecting your information. Your continued use of our Site and services after any changes to this Policy will constitute your acknowledgment of the changes and your agreement to be bound by the updated Policy.

If we were to make any changes that materially affect how we handle your personal data, we will seek your consent if required by law. For example, if we plan to use your information for a new purpose that you haven’t agreed to before, we will notify you and, if necessary, request your permission.

Last Updated: March 23, 2025.

Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or your personal data, please do not hesitate to contact us. We are here to help and address any issues related to your privacy and the security of your information.

Sobhy Girgis Sons
125 Bab El Bahr St., Bab El Shaareya, Cairo, Egypt.
Phone: +20 (2) 25905228 or call our hotline at 15710
Email: help@sobhy-girgis.com

You can reach out to us by phone during our business hours or send us an email anytime. We will do our best to respond promptly to your inquiries. Additionally, you may contact us via the live chat on our Site or through our official Facebook or Google channels for general questions or support, but for privacy-specific inquiries (like data access or deletion requests) please use the email above so we can properly track and address your request.

Thank you for trusting Sobhy Girgis Sons. We value your business and your privacy, and we are committed to safeguarding your personal information.