Skip to content
EgyGuests

Privacy Policy

Last updated: 10 May 2026 · Effective: 10 May 2026

This Privacy Policy explains how EgyGuests Egypt collects, uses, stores and protects your personal data when you use our Platform. By using the Platform, you consent to the practices described herein.

1. Who we are (Data Controller)

EgyGuests Egypt ("EgyGuests", "we", "us", "our") operates an on-demand home services platform for short-term-rental guests, hosts and homeowners in Sheikh Zayed City, Giza, Arab Republic of Egypt.

For the purposes of Egypt's Personal Data Protection Law (Law No. 151 of 2020, the "PDPL") and any equivalent foreign legislation, EgyGuests Egypt is the Data Controller of personal data collected via this website and our connected channels (mobile apps, WhatsApp Business).

Registered office: Sheikh Zayed City, Giza Governorate, Arab Republic of Egypt. Data-protection contact: privacy@egyguests.com.

2. Personal data we collect

We minimise data collection. Categories collected through this website:

  • Identification & contact data — name, WhatsApp number, optional email — submitted via the quote / vendor-application form.
  • Service data — service type chosen, address (compound, unit, building), notes you choose to share.
  • Vendor-only data — trade, years of experience, ID type (National ID or passport), the last 4 digits of your ID number for matching, optional portfolio links. The full ID is captured later, in person, only after your explicit consent.
  • Technical data — IP address, user-agent, timestamps, request ID. Used solely for security, abuse-prevention and debugging.
  • Payment data — handled exclusively by our PCI-DSS-compliant payment processor Paymob. We store only a reference token and the last 4 digits of the card; we never see, store or transmit your full PAN, CVV or PIN.

3. Why we process it (legal basis)

  • Performance of a contract (PDPL Art. 7(c)) — to dispatch a vetted vendor and pre-authorise / capture payment for the service you booked.
  • Legitimate interests (PDPL Art. 7(g)) — to prevent fraud and abuse (rate-limiting, honeypot, log retention) and to operate our platform reliably.
  • Consent (PDPL Art. 7(a)) — for any non-essential cookies, marketing email or SMS. Consent is opt-in and can be withdrawn at any time.
  • Legal obligation (PDPL Art. 7(d)) — to comply with tax, anti-money-laundering and consumer-protection laws.

4. With whom we share

Your data is shared only with the parties strictly required to deliver the service:

  • Service Providers ("Vendors") — your name, phone, address and service notes are forwarded to the vetted vendor we dispatch. Vendors sign a confidentiality clause and may not retain your data after job completion.
  • Payment processor (Paymob) — for tokenisation, pre-authorisation and capture. Paymob is PCI-DSS Level 1 certified.
  • Communication providers — WhatsApp (Meta Platforms Ireland Ltd) when you initiate a chat with us.
  • Hosting & infrastructure — Hostinger International Ltd (VPS, EU region) and Cloudflare Inc. (DDoS / TLS).
  • Authorities — only when compelled by a valid Egyptian court order, regulatory request or to protect the vital interests of a person.

We never sell, rent or trade personal data. We do not run third-party advertising trackers.

5. International data transfers

Some of our processors operate servers outside Egypt. Where this happens we rely on (a) the destination country's adequacy as recognised by Egypt's Data Protection Centre, or (b) Standard Contractual Clauses, or (c) your explicit consent. A list of processors and their locations is available on request from privacy@egyguests.com.

6. Retention

  • Quote / lead data — 24 months from last interaction, then anonymised.
  • Booking & invoice data — 7 years (mandated by Egyptian Tax Authority).
  • Vendor application data — 12 months if not onboarded; for the duration of the contract + 7 years if onboarded.
  • Server logs — 30 days unless required for an active investigation.

7. Security

We apply industry-standard organisational and technical measures: TLS 1.2+ everywhere, HSTS preload, CSP, role-based access, encrypted backups, least-privilege deployment keys, mandatory 2FA for staff, quarterly access reviews, and regular dependency patching. No system is ever fully secure; we will notify affected users without undue delay (and in any event within 72 hours) of any breach likely to result in a high risk to their rights and freedoms.

8. Your rights

Under the PDPL — and, where applicable, the EU GDPR — you have the right to:

  • Access the personal data we hold about you.
  • Rectify inaccurate or incomplete data.
  • Erase data we no longer have a legal basis to keep ('right to be forgotten').
  • Restrict or object to certain processing.
  • Receive a portable copy of your data (machine-readable).
  • Withdraw any consent at any time, without affecting prior lawful processing.
  • Lodge a complaint with the Egyptian Data Protection Centre (or, for EU residents, your national supervisory authority).

To exercise any right, write to privacy@egyguests.com from the email address on file. We respond within 30 days.

9. Cookies

This site uses only cookies strictly necessary for it to function (locale preference, session). We do not load Google Analytics, Meta Pixel, or any cross-site tracker. If we ever introduce optional analytics, you will see a consent banner first.

10. Children

Our services are intended for adults 18+. We do not knowingly collect personal data from children. If you believe a minor has submitted personal data, please contact privacy@egyguests.com and we will delete it.

11. Changes to this policy

We may update this policy. The "Last updated" date at the top reflects the latest revision. Material changes will be announced on the homepage banner for 30 days, and emailed to active users where we have an email on file.

12. Contact

Data-protection requests: privacy@egyguests.com. General inquiries: hello@egyguests.com. Postal: EgyGuests Egypt, Sheikh Zayed City, Giza, Arab Republic of Egypt.