Get in Touch

PRIVACY POLICY

Last updated: 05-January-2026 

Invoqat (“Invoqat”, “we”, “our”, or “us”) is committed to protecting the privacy and security of personal data. This Privacy Policy explains how we collect, use, store, share, and protect information when you use our website, mobile applications, and services (collectively, the “Services”). 

This policy is designed to comply with applicable data protection laws in the United Arab Emirates, including the UAE Federal Decree-Law No. 45 of 2021 on the Protection of Personal Data. Where applicable, we also align our data handling practices with the EU General Data Protection Regulation (GDPR) for users located in the European Economic Area. This policy additionally meets the requirements of the Google Play Store and Apple App Store. 

 

  1. Information We Collect

We may collect the following categories of information when you use the Services. 

Personal Information 

  • Name, email address, phone number 
  • Company name, job title, and business contact details 
  • Account credentials and authentication data 

Operational and Usage Data 

  • Device identifiers, IP address, operating system, and application version 
  • Usage logs, timestamps, and interaction data 
  • Location data where required for operational features, subject to device permissions 

Asset, Inventory, and Field Data 

  • Data related to assets, inventory items, work orders, field activities, and operational events entered into or generated through the Services 
  • Identification and tracking data collected through RFID, NFC, QR codes, or barcodes 

We do not intentionally collect sensitive personal data unless required for lawful operational purposes. 

 

  1. How We Use Information

We use collected information to: 

  • Provide, operate, and maintain the Services 
  • Authenticate users and manage accounts 
  • Enable asset management, inventory tracking, field services, and invoicing functionality 
  • Improve system performance, reliability, and security 
  • Comply with legal and regulatory obligations 
  • Communicate service updates, support responses, and operational notices 

We do not sell personal data to third parties. 

 

  1. Legal Basis for Processing

We process personal data based on one or more of the following legal grounds, as applicable: 

  • Contractual necessity 
  • Legitimate business interests 
  • User consent, where required 
  • Legal or regulatory obligations 

 

  1. Data Sharing and Disclosure

We may share data only with: 

  • Authorized service providers and technology partners supporting the operation of the Services 
  • Cloud infrastructure providers hosting the Services 
  • Regulatory or government authorities where required by law 

All third parties are contractually obligated to protect data and use it only for authorized purposes. 

 

  1. Data Storage and International Transfers

Data may be stored on secure servers located within or outside the United Arab Emirates. 

Where personal data is transferred internationally, we implement appropriate safeguards consistent with UAE data protection laws and, where applicable, GDPR requirements. 

 

  1. Data Security

We implement appropriate administrative, technical, and organizational measures to protect personal data against unauthorized access, loss, misuse, alteration, or disclosure. 

While no system can be guaranteed to be completely secure, we continuously review and improve our security controls. 

 

  1. Data Retention

Personal data is retained only for as long as necessary to fulfill operational, contractual, or legal requirements, unless a longer retention period is required or permitted by law. 

 

  1. User Rights

Subject to applicable law, users may have the right to: 

  • Access personal data we hold about them 
  • Request correction or deletion of personal data 
  • Restrict or object to certain processing activities 
  • Withdraw consent where processing is based on consent 

Requests can be made using the contact details provided below. 

 

  1. EU and EEA Users (GDPR)

If you are located in the European Union or European Economic Area, you may have additional rights under the General Data Protection Regulation (GDPR), including the right to: 

  • Access your personal data 
  • Request correction or erasure 
  • Restrict or object to certain processing 
  • Request data portability where applicable 

Where GDPR applies, personal data is processed based on contractual necessity, legitimate interests, legal obligations, or user consent. 

Requests related to GDPR rights can be submitted using the contact details below. 

 

  1. Mobile Application Permissions

Our mobile applications may request access to: 

  • Camera, for scanning QR codes or barcodes 
  • Location, for field operations and location based features where enabled 
  • Storage, for operational data and offline functionality 

Permissions are used strictly for functional purposes and can be managed through device settings. 

 

  1. Children’s Privacy

The Services are not intended for individuals under the age of 18. We do not knowingly collect personal data from children. 

 

  1. Updates to This Privacy Policy

We may update this Privacy Policy from time to time. Any changes will be posted on our website with an updated effective date. 

Continued use of the Services constitutes acceptance of the updated policy. 

 

  1. Contact Information

For privacy related questions or requests: 

Email: info@invoqat.com 
Company: Invoqat 
Location: Dubai, United Arab Emirates