Privacy Policy

What data we collect

We collect a small amount of information to run the site and respond when you reach out. Specifically:

• Information you type into a form: depending on the page, this may include your name, professional role or credential, phone number, email address, city or neighborhood, who needs the assessment, your main concern, preferred contact method, and any optional message you choose to include.
• Basic analytics events: the page path you visited and the type of action you took, such as a page view, booking click, call or text click, email click, or successful contact-form submission. These events do not include your name, email, phone number, or free-text form content. Each event is tagged with a short, random session identifier we keep only while your browser tab is open so we can tell which clicks came from the same visit. The identifier is cleared when you close the tab and is not stored in cookies. If you arrived from another website or a tagged link, we may also record the referring site name and the standard campaign tags (utm_source, utm_medium, utm_campaign, utm_content, utm_term) so we can understand which channels lead people to us.
• Technical request data: when the contact or analytics endpoint is used, our AWS systems receive technical data such as source IP address, request time, route, status, and response timing. We use this for security, rate limiting, and reliability. For short-lived rate-limit records, we store a one-way hash of the source IP rather than the raw IP.
• Edge access logs: the content delivery network that serves this site (Amazon CloudFront) records standard access logs for each request, which include client IP address, request time, URL, response status, and similar technical fields. These logs are stored in a private AWS bucket that is not publicly accessible and expire automatically within 90 days.

We do not use cookies, tracking pixels, browser fingerprinting, or third-party advertising networks of any kind.

How we use your information

Form submissions are used to respond to your inquiry, send a confirmation email if you provided an email address, and coordinate the assessment if you decide to move forward. We do not send newsletters or unsolicited marketing email.

Analytics events are used only to understand which pages and actions are most useful, monitor whether core contact paths are working, and catch problems before they cause missed inquiries.

Technical request data is used for abuse prevention, temporary rate limiting, and basic operational troubleshooting.

How data is stored and who can see it

Successful form submissions are stored in AWS-managed infrastructure in the United States. They are written to Amazon DynamoDB and sent through Amazon SES so the message reaches SAIF ENVISION promptly. If you provide an email address, the system also sends a confirmation email to you.

Basic analytics event data and API access data are retained in AWS CloudWatch logs for operational analysis. AWS acts as a sub-processor operating in the United States.

We do not sell your personal information, do not engage in targeted advertising, and do not perform automated profiling that produces legal or similarly significant effects on you. Confirmation emails sent after a form submission are transactional only — we do not send marketing email.

Data retention

Inquiry records are set to expire about one year after submission. AWS TTL deletion is not always immediate, so a record may remain a short time longer before automatic removal completes.

API access logs are retained for 14 days. Lambda and operational logs are retained for up to 30 days. CloudFront edge access logs are retained for up to 90 days. Short-lived rate-limit records expire automatically after the rate-limit window plus a short grace period.

Your rights and data requests

You may request a copy of any personal information we hold about you, or ask us to correct or delete it, by emailing zohair@saifenvision.com. We aim to respond within 30 days.

If you are a Texas resident, you have the right under the Texas Data Privacy and Security Act to access, correct, delete, or obtain a copy of your personal data, and to opt out of any sale, targeted advertising, or qualifying profiling. As stated above, we do not engage in any of those activities. If we ever decline a request, you may appeal that decision by replying to our response within 60 days; we will review and respond to the appeal within 60 days.

This site is not directed to children under 13, and we do not knowingly collect personal information from children under 13.

Cookies and third-party services

This site does not set any cookies. There are no tracking pixels, social media widgets, or third-party advertising scripts embedded in these pages, and you will not be retargeted across the web based on visiting this site.

Booking links take you to Calendly. If you choose to use Calendly, any information you provide there is handled under Calendly's own privacy policy rather than this site's form flow.

Contact

Questions about this policy or requests regarding your data: