Privacy Policy

Effective Date: September 2025

At Bab Al Qamar for Website Management LLC (registered under No. 36111 in the Companies Register as a Limited Liability Company), hereinafter referred to as “Jeeny,” protecting your privacy and the security of your personal data is a top priority. The personal data you provide to us is safeguarded with the highest levels of security, We confirm our compliance with the Jordanian Personal Data Protection Law No. 24 of 2023 and all regulations, instructions, and decisions issued pursuant thereto, in relation to the collection, storage, transfer, and processing of your personal data.

Our core activities include providing safe, efficient, and reliable passenger transport services through our network of registered drivers who use our application, We target individuals within the Hashemite Kingdom of Jordan who seek convenient transportation services, our services and application are regulated and supervised by the land transport regulatory commission (LTRC).

By using our services or providing your data, you acknowledge that you have read, understood, and agreed to this Policy, If you do not agree, please refrain from using the application.

Accordingly, we provide you with detailed information about the data we collect, how we process and share it, and your rights under Jordanian law, as follows:

Legal Entity (Controller):

Bab Al Qamar for Website Management LLC — “Jeeny”
Amman, Jordan — Mecca Street, Al-Hijaz Tower, Building 158

Data Protection Officer (DPO):

Name Tariq Al-Diri
E-mail [email protected]

General inquiries and data subject rights contact: [email protected]
This Policy applies to the processing of personal data within the territory of Jordan and is aligned with the Jordanian Personal Data Protection Law No. 24 of 2023 effective on17/3/2024 and the regulations, instructions, and decisions issued thereunder.

Please note that this Privacy Policy may be updated to reflect changes in Our practices or any amendments to the Law including the Personal Data Protection Law, Executive Regulations, or new requirements from MODEE and any relevant official Authorities.
We encourage You to review this Policy regularly to stay informed about how Your Personal Data is collected, used, and protected

1) Data Subjects (Whose Information We Collect?)
At Jeeny, we collect personal data relating to passengers, drivers, employees, visitors to our application or website.

2) Legal Bases for Processing
We process your data in accordance with the principles of lawfulness, transparency, purpose limitation, data minimization, accuracy, security, and limited retention.
The legal bases include:

  • Explicit consent where required;
  • Performance of a contract;
  • Compliance with legal obligations;
  • Security purpose and Legitimate interests;
  • Public safety or public interest within the limits of Jordanian law.

3) Definitions and Roles

  • Personal Data: Any data or information related to a natural person that identifies or may identify them, directly or indirectly, regardless of its source or form, including information about their identity, family status, or locations.
  • Controller: Jeeny (Bab Al Qamar for Website Management LLC) — determines the purposes and means of processing and bears responsibility for it.
  • Processor: Any entity processing data on behalf of the Controller, such as payment providers, cloud storage providers, or support services.

4) Categories of Data We Collect

Passengers:

  • Full name;
  • Mobile number;
  • Email address;
  • Location data (pickup/drop-off points);
  • Other voluntarily provided information.

Drivers:

  • Full name;
  • National ID;
  • Mobile number;
  • Email address;
  • Vehicle registration details;
  • Driver’s license and driving permits;
  • Profile photo;
  • Photos/videos, including those submitted for identity verification (e.g., facial recognition);
  • Proof of health or fitness to provide services (where required by law);
  • Any additional data required under applicable laws or voluntarily provided.

Employees:

  • Identification details (e.g., full name, national ID, passport).
  • Contact details (e.g., email, phone number, address).
  • Employment records (e.g., CV, employment history, performance reviews).
  • Financial information (e.g., bank account, salary).
  • Biometric data, where required for identity verification or access control
  • Health data, only as required for legal or regulatory purposes.
  • Disciplinary or grievance records, if any

Other Data Collected:

  • Payment Data: Bank card details (card numbers, CVV, expiry dates, cardholder name), payment amounts, and transaction records.
  • Usage Data: Device information (IP address, device type, OS, app version), app interactions (visited pages, features used, session duration).
  • Location Data: Real-time GPS location, pickup/drop-off points.

When sufficient personal data is collected to create an account, Jeeny assigns you a unique account number “Jeeny Account ID”, used to identify you across our services.

5) Sources and Methods of Data Collection

  • Direct collection: via account creation or updates, in-app forms, or customer support interactions.
  • Indirect collection: automatically through technology, such as analytics platforms, integrations with third parties, or from our key business clients.

6) Purposes of Processing
We process your personal data in order to:

  • Create and manage accounts, perform contracts, or pursue legitimate interests;
  • Facilitate ride requests, match drivers, and enable location tracking when required;
  • Send ride status updates, promotional offers, and essential communications;
  • Conduct direct marketing and provide tailored offers;
  • Process secure payments and invoicing;
  • Verify identities and prevent fraud;
  • Comply with laws and respond to regulatory authorities;
  • Improve services and analyze performance;
  • Conduct aggregated research and statistics;
  • Enhance user interactions, improve the application, and develop services.
  • Recruitment and onboarding, payroll and benefits administration, compliance and audits and performance and conduct management (All specific to employees)

We will not use data for incompatible purposes without prior assessment and renewed consent, where legally required.

7) Processing Mechanism (How Do We Process Your Personal Data?)
All personal data collected by Jeeny, or where necessary by a third party, is processed in accordance with the stages of the data lifecycle (collection, storage, use, sharing, and destruction). Each stage is linked to its specific purpose, the data types involved, and the applicable safeguards:

Stage Description Types of Data Involved Processing Purposes & Security Measures
Collection Jeeny collects personal data directly from users, as detailed in the “Collection of Personal Data” section above, through the application or from third parties with the user’s consent. Account data, payment data, location data, usage data. Purpose: Ensuring lawful and efficient collection to provide a secure service and prevent data tampering during collection.
Legal basis: Consent, legitimate interest, or agreement, as necessary for the operation of our services and compliance with applicable legislation.
Sensitive Data: Biometric or health data is subject to heightened security and processed only when strictly necessary for legal or security purposes, and limited to authorized staff.
Storage Data is securely stored on encrypted servers accessible only to authorized personnel. All collected data (account, payment, usage, location). Purpose: Maintain data integrity, comply with retention rules, and ensure secure operations.
Security: Access controls and confidentiality undertakings.
Use Data is processed to deliver, customize, and enhance services, including pattern analysis and payment processing. Usage, payment, and location data. Purpose: Enhance user experience, improve service quality, prevent fraud, and manage notifications.
Security: Anonymization, pseudonymization, and continuous monitoring for vulnerabilities.
Sharing Data may be shared with approved external processors and regulators, including cross-border transfers under legal safeguards. Account, payment, and location data. Purpose: Facilitate core services such as payment processing, analytics, data storage, and customer support.
Security: Standard Contractual Clauses (SCCs), Data Processing Agreements (DPAs), and cross-border guarantees.
Destruction Data is securely deleted or anonymized once no longer needed or as required by applicable law. All personal data. Purpose: Ensure compliance with data minimization and retention policies.
Security: Secure deletion and anonymization protocols.

Data Security
Technical and organizational measures are implemented to preserve confidentiality and integrity.

  • Covered Data: All personal data, especially sensitive categories (e.g., biometric data, payment information).
  • Procedures: Encryption, access control, anonymization, pseudonymization, regular system audits, and security assessments.
  • Incident Response: A plan to promptly notify users and authorities in case of a data breach.

8) Data Retention
We retain personal data for as long as necessary to fulfill the purposes or comply with legal or regulatory obligations, then delete or anonymize it securely.
Examples (non-exhaustive):

  • Transaction records per applicable financial and tax laws.
  • Communication and support records until closure of the request plus a reasonable period for evidence and service improvement.
  • Marketing data until consent is withdrawn.
  • Longer retention where necessary for dispute resolution, obligation enforcement, or legal compliance.

9) Data Sharing
We share data strictly to the extent necessary and proportionate with:

  • Drivers and Riders: To enable ride requests and communication.
  • Service Providers / Third Parties: Vendors supporting data processing, payment, analytics, and customer care.
  • Legal Authorities: Where required by applicable law, or to protect our rights and safety.

4. Sharing Personal Data with Third Parties & Cross-Border Transfers
For the operation of Jeeny and to provide high-quality services, we may share your data with selected third parties, including entities outside the Hashemite Kingdom of Jordan, subject to applicable law and protective agreements.
Categories include:

  • Service Providers & Advisors: Professional entities (accounting, registration, administration, tax, legal, financial) assisting Jeeny in its operations and compliance.
  • App Service Partners: Entities acting on Jeeny’s behalf to facilitate app-based services such as analytics, payments, marketing, communications, and personalization.
  • Corporate Transactions: In cases of sale, merger, liquidation, receivership, or asset transfer, personal data may be disclosed to potential acquirers and their professional advisors.
  • Affiliates & Group Companies: Within the corporate group for aggregated data analysis, user profile management, personalization, and targeted marketing, subject to equivalent safeguards.
  • Legal & Regulatory Compliance: Authorities legally entitled to access data (e.g., under court orders or statutory obligations), including anti-fraud information sharing.
  • Business Partners: Trusted companies and clients collaborating with Jeeny (e.g., joint promotions, research, IT support, consulting).

10) Cross-Border Transfers & Storage
We strive to store data primarily within Jordan. Where external systems are required, transfers occur only with equivalent protection, contractual safeguards,or user consent (where mandated). All recipients are bound by strict confidentiality and access restrictions.

Third Party Applications and Websites
This Privacy Policy applies only to Personal Data collected on Jeeny ‘s Application. We are not responsible for the content or privacy practices of Third-party applications and Websites operated linked to or from the Jeeny Application. We encourage You to review the privacy policies of any Third Party applications or websites before providing them with Your Personal Data.

11) Your Data Protection Rights
Under applicable laws, your rights include:

  • Right to Access & Portability: Obtain a copy of your data and details on its use and sharing, in a structured, machine-readable format where applicable.
  • Right to Rectification: Request correction, addition or update of inaccurate, outdated, or incomplete data.
  • Right to Erasure (De-identification): Request deletion when data is no longer necessary or consent is withdrawn, unless retention is legally required.
  • Right to Restrict Processing: Request limited use if accuracy is contested, objections raised, or lawful retention required.
  • Right to Object/Withdraw Consent: Object to processing based on legitimate interests, including direct marketing or profiling. Withdraw consent at any time, halting processing for consent-based purposes (subject to legal obligations).
  • Right to Lodge a Complaint: File a complaint with the relevant supervisory authority in addition to contacting us directly.
  • Right to be Informed: Be informed of any security breach compromising your data.

Note on Identity Verification:
For security purposes, Jeeny may require additional information to confirm Your identity before processing requests to access, update, or delete Data

In this regard, please note that You may lodge any such requests through the inquiry box available on our website. Additionally,You may refer to Point No. (15) of this Privacy Policy for further details on the applicable procedures.

12) Information Security & Incident Response
We implement appropriate technical and organizational controls (encryption at rest/in transit, least-privilege access, confidentiality agreements, training, audits, penetration testing, anonymization/pseudonymization).
In case of data breaches, Jeeny will notify affected individuals and the competent regulator within the legally required timeframe, including the nature of the breach and mitigation measures.

While We strive to protect Your Personal Data, it is important to understand that no security system is entirely foolproof. Therefore, We cannot guarantee the absolute security of Your Data transmitted through the Application or stored in Our systems.

User Responsibilities*
You play a key role in keeping Your Personal Data secure. It is Your responsibility to maintain the confidentiality of Your Jeeny account username and password and to ensure that Your account is not accessed by unauthorized individuals. We recommend the following:

  • Account Security: Do not share Your username or password with anyone, and take all necessary precautions to prevent unauthorized access to Your account.
  • Reporting Security Incidents: If You suspect that Your Username, password, or any other account information has been compromised or is being Used without Your authorization, please notify Jeeny immediately so that We can take appropriate measures to secure Your account.

Jeeny will never request Your account password through email or other electronic communication. You should disregard any such request as a potential phishing attempt and report it to Us.

Limitations of Liability
While We take reasonable steps to protect Your Personal Data, Jeeny cannot be held liable for any unauthorized access to Your account or Personal Data resulting from Your failure to maintain adequate security measures (e.g., sharing passwords or using weak credentials). You accept responsibility for any activity that occurs under Your Jeeny account, including transactions or changes made to Your account.

13) Legally Ineligible Persons
Our services target individuals over 18. We do not knowingly collect data from minors. Users acting on behalf of minors confirm having the legal authority to consent. Any accidental collection will be deleted upon discovery.

14) Cookies & Tracking

The app uses cookies and similar technologies for operational (language, session, security) and analytical purposes.

  • Only strictly necessary cookies are used by default.
  • Express consent will be obtained for non-essential trackers (e.g., marketing).
  • A preference panel will be provided to manage consents.

15) Complaints & Supervisory Authority
If you have concerns regarding our processing, please contact us first at: [email protected] or via our Data Protection Officer (DPO).
You also retain the right to lodge a complaint with the Personal Data Protection Directorate at the Ministry of Digital Economy and Entrepreneurship in Jordan.

16) Policy Updates
This Policy may be updated from time to time. The most recent revision date will be displayed at the top. Continued use of services constitutes acceptance. Material updates will be notified via the app or email.

17) General Provisions

  1. Where issued in multiple languages, the Arabic version prevails in Jordan unless otherwise required by law or contract.
  2. No provision herein creates contractual rights beyond those imposed by law; any waiver must be explicit and in writing.
  3. Promotional communications may be sent based on your preferences and usage behavior, You may unsubscribe at any time without affecting essential trip-related notifications.