What information does eSanad collect?

eSanad collects personal information such as name, contact details, identification data, and policy-related information when you use its services or submit forms.

How does eSanad use my personal information?

Your information is used to provide insurance services, process requests, generate quotes, improve user experience, and comply with legal and regulatory requirements.

Does eSanad share my data with third parties?

eSanad may share your data with insurance providers, partners, and service providers only as necessary to deliver services, process policies, or comply with legal obligations.

How does eSanad protect my personal data?

eSanad uses secure technologies, encryption, and access controls to protect your personal information from unauthorized access, loss, or misuse.

Does eSanad use cookies?

Yes, eSanad uses cookies to enhance website functionality, analyze user behavior, and improve overall browsing experience.

What are cookies and why are they used?

Cookies are small data files stored on your device that help improve website performance, remember preferences, and provide personalized experiences.

Can I control or disable cookies?

Yes, you can control or disable cookies through your browser settings, but this may affect certain features of the website.

How long does eSanad retain my data?

eSanad retains your data only as long as necessary for service delivery, legal compliance, and business purposes.

What rights do I have regarding my personal data?

You have the right to access, update, or request deletion of your personal data, subject to applicable laws and regulations.

Is my data transferred outside the UAE?

Data may be transferred outside the UAE when necessary for processing or service delivery, but appropriate safeguards are implemented.

How can I contact eSanad regarding privacy concerns?

You can contact eSanad through the official website contact page or support channels for any privacy-related queries or concerns.

Does eSanad update its privacy policy?

Yes, eSanad may update its privacy policy periodically, and users are encouraged to review it regularly for any changes.

eSanad Privacy Policy

TABLE OF CONTENTS

Who We Are and What We Do
About This Privacy Policy
How We Process Personal Data
Categories of Personal Data We Collect
Purposes of Processing
Legal Basis for Processing
Sources of Information
Automated Processing
Disclosure of Information to Others
International Transfers and Limited Access Outside the UAE
How We Protect and Secure Data
How Long We Retain Personal Data
Your Rights
Marketing Communications
Modifications to This Privacy Policy
Applicable Law
Questions About This Privacy Policy

Who We Are and What We Do

eSanad - Success Insurance Services L.L.C. (the “Company” or “eSanad”) is an insurance brokerage company providing brokerage services through conventional and digital platforms for customers to discover insurance quotations, compare them, and purchase motor, travel, home, health, and other insurance products according to their requirements.

The Company believes that the personal information of clients, prospects, partners, and website users should be respected and protected. This Privacy Policy explains how personal data is collected, used, processed, stored, disclosed, and protected when individuals interact with eSanad through its services, contact channels, website, and digital platforms.

In this Privacy Policy, “we”, “us”, and “our” refer to the Company and its successors, assigns, and permitted transferees. “You” and “your” refer to any person who uses our services, accesses our website, submits information to us, or otherwise communicates with us.

About This Privacy Policy

This Privacy Policy describes how the Company handles personal data relating to customers, prospective customers, website visitors, service providers, business contacts, regulatory counterparts, and other relevant individuals.

This Privacy Policy applies to interactions with eSanad through www.eSanad.com, associated digital platforms, contact center channels, forms, communications, and service touchpoints.

Third-party websites that may be accessed through our website are not covered by this Privacy Policy. eSanad is not responsible for the privacy or security practices of third-party websites, platforms, insurers, or service providers that operate under their own privacy terms.

How We Process Personal Data

We process personal data only where there is a valid legal basis and only for legitimate business, contractual, compliance, operational, service, support, fraud prevention, security, and communication purposes.

Processing may include collection, recording, organization, structuring, storage, adaptation, retrieval, consultation, use, disclosure, transfer, alignment, restriction, deletion, and destruction of personal data.

The categories of personal data processed and the way such data is used depend on the nature of the relationship with the individual, the services requested, the product involved, legal requirements, and the channels used to interact with us.

Categories of Personal Data We Collect

Depending on the circumstances, eSanad may collect and process the following categories of personal data:

• Identity information, such as name, nationality, date of birth, gender, Emirates ID, passport details, visa information, and other identification records.

• Contact information, such as mobile number, telephone number, email address, postal address, and communication details.

• Quotation and policy information, such as insurance product type, insured asset or risk details, policy preferences, coverage details, beneficiary information, prior insurance information, claim history, policy changes, renewals, and endorsements.

• Financial and payment information, such as billing details, transaction information, and payment-related records.

• Health or sensitive information, where relevant and lawful for underwriting, servicing, claims, or compliance in connection with health or related insurance products.

• Technical information, such as IP address, browser type, device identifiers, cookies, usage logs, and interaction data from our digital channels.

• Communication records, such as call recordings, chat transcripts, emails, complaint records, feedback, and service correspondence.

• Compliance information, such as due diligence records, fraud checks, sanctions screening information, declarations, and regulatory reporting information.

• CCTV and premises security information, where applicable for visits to physical premises.

Purposes of Processing

We may process personal data for one or more of the following purposes:

• To provide quotations, compare options, arrange insurance products, and facilitate policy issuance.

• To administer policies, renewals, endorsements, cancellations, claims support, and customer service requests.

• To verify identity, assess eligibility, prevent fraud, detect misuse, and maintain platform security.

• To communicate with customers and respond to enquiries, complaints, requests, or instructions.

• To comply with legal, regulatory, audit, risk management, and reporting obligations.

• To manage business operations, quality assurance, service improvement, analytics, training, and record keeping.

• To send service communications and, where permitted, relevant marketing communications.

• To protect the rights, property, safety, and legitimate interests of the Company, customers, insurers, and third parties.

Legal Basis for Processing

Depending on the circumstances, eSanad may process personal data on the basis of:

• Performance of a contract or taking steps prior to entering into a contract.

• Compliance with legal and regulatory obligations.

• Legitimate interests pursued by the Company or a relevant third party, where not overridden by data protection rights.

• Consent, where consent is required or appropriate.

• Protection of vital interests, where applicable under law.

Where sensitive personal data is processed, the Company will do so only where permitted by law and where an appropriate lawful basis applies.

Sources of Information

Personal data may be obtained from:

• The individual directly.

• Insurance proposal forms, applications, declarations, uploads, and communications.

• Insurance companies, underwriters, reinsurers, and claims administrators.

• Employers, sponsors, family members, or authorized representatives where appropriate.

• Government authorities, regulators, public records, verification agencies, and compliance screening providers.

• Cookies, tracking technologies, contact center systems, digital platforms, and Website analytics tools.

• Service providers and business partners assisting with technology, operations, communications, or support services.

Automated Processing

eSanad may use automated tools, rules-based processing, analytics, or profiling support in connection with quotation flows, fraud prevention, customer service workflows, digital platform operations, marketing preferences, and service optimization.

Automated processing may support efficient handling of requests, quality control, personalization, and risk management, but policy underwriting and final insurance decisions remain subject to the relevant insurer’s processes and approvals where applicable.

Disclosure of Information to Others

Personal data may be disclosed, shared, or made available on a need-to-know basis to:

• Insurance companies, reinsurers, and underwriting partners.

• Claims administrators, medical networks, garages, workshops, surveyors, and other service providers relevant to a product or claim.

• Payment processors, technology providers, cloud providers, customer support vendors, and communications providers.

• Professional advisers, auditors, legal counsel, and compliance consultants.

• Government bodies, regulators, courts, law enforcement agencies, and competent authorities where required or permitted by law.

• Group entities, affiliates, successors, assignees, or acquirers in connection with restructuring, transfer, merger, or business continuity arrangements.

The Company takes reasonable steps to ensure that recipients process personal data with appropriate confidentiality and security protections.

International Transfers and Limited Access Outside the UAE

Where operationally necessary and legally permitted, personal data may be accessed from or transferred to jurisdictions outside the UAE by service providers, technology partners, affiliates, insurers, or support teams involved in delivering services.

Where such access or transfer takes place, the Company will seek to implement appropriate safeguards and controls in accordance with applicable law.

How We Protect and Secure Data

The Company uses administrative, technical, physical, and organizational safeguards designed to protect personal data against unauthorized access, disclosure, alteration, misuse, destruction, or loss.

These measures may include access controls, authentication procedures, encryption, logging, monitoring, secure hosting arrangements, staff confidentiality obligations, training, and vendor oversight. No system can be guaranteed to be completely secure, but the Company works to maintain reasonable and appropriate protections.

How Long We Retain Personal Data

Personal data is retained only for as long as reasonably necessary for the purpose for which it was collected, including to provide services, maintain records, handle claims and disputes, satisfy regulatory obligations, enforce rights, conduct audits, and meet legal retention requirements.

Retention periods may vary according to the type of data, the nature of the relationship, the product involved, legal requirements, operational need, and limitation periods applicable to disputes or claims.

Your Rights

Subject to applicable law, individuals may have rights in relation to their personal data, including the right to:

• Request access to personal data.

• Request correction of inaccurate or incomplete data.

• Request deletion in certain circumstances.

• Request restriction of processing in certain circumstances.

• Object to certain processing activities where permitted by law.

• Withdraw consent where processing is based on consent, without affecting prior lawful processing.

• Request information about how personal data is processed.

• Lodge a complaint with a competent authority where applicable.

These rights are not absolute and may be limited where legal, regulatory, contractual, security, fraud prevention, or other legitimate grounds apply.

Marketing Communications

Where permitted by law, eSanad may send product, service, promotional, educational, or campaign-related communications. Individuals may opt out of non-essential marketing communications using the unsubscribe mechanism provided or by contacting the Company.

Service related, transactional, legal, compliance, or account communications may still be sent where necessary even if a marketing preference has been changed.

Modifications to This Privacy Policy

The Company may amend, update, or revise this Privacy Policy from time to time to reflect changes in legal requirements, services, technology, operations, or privacy practices.

Any updated version may be published on www.eSanad.com and will become effective from the date indicated in the revised version unless otherwise stated.

Applicable Law

This Privacy Policy is governed by the laws of the United Arab Emirates.

In the event of any conflict between this Privacy Policy and an applicable mandatory law, the applicable law shall prevail to the extent of the conflict.

Questions About This Privacy Policy

If you have questions, concerns, or requests relating to this Privacy Policy or the processing of personal data by eSanad, you may contact the Company using the contact details published on www.eSanad.com.

Website: www.eSanad.com

Phone: 600 500888

Address: 26 Bait Al Sha'er St - Al Danah - E11 - Abu Dhabi, United Arab Emirates

eSanad Privacy Policy

TABLE OF CONTENTS

Who We Are and What We Do
About This Privacy Policy
How We Process Personal Data
Categories of Personal Data We Collect
Purposes of Processing
Legal Basis for Processing
Sources of Information
Automated Processing
Disclosure of Information to Others
International Transfers and Limited Access Outside the UAE
How We Protect and Secure Data
How Long We Retain Personal Data
Your Rights
Marketing Communications
Modifications to This Privacy Policy
Applicable Law
Questions About This Privacy Policy