SAL Saudi Logistics Services Company offers a wide range of products and services, including sea, air, and land cargo as well as ground handling, storage and logistical products and services. References to SAL products and services in this statement include commercial products and services, websites, apps, and devices. Your privacy is important to us. This privacy statement explains the personal information SAL Saudi Logistics Services collects, how we process personal information, and for what purposes.

This policy applies to any SAL website that links to this Privacy and Cookies Policy, SAL social media or official SAL content on other websites, and any personal information you provide to us via phone, email, letters, other correspondence or in person. SAL websites may contain hyperlinks to third party websites that have their own privacy policies and cookies; we urge you to review them. SAL does not accept responsibility for the privacy practices of third party websites and your use of such websites is at your own risk.

Data protection laws: We are legally obliged to use your information in line with all applicable laws concerning the protection of personal information, including the Saudi Personal Data Protection Law (PDPL) and relevant Saudi regulations. These laws are referred to collectively in this policy as the “data protection laws.” No website can be completely secure; if you have any concerns that your SAL account could have been compromised (e.g., someone could have discovered your password), please contact us straight away.

We collect data from you through your interactions with us and through our products and services. You provide some of this data directly, and we obtain some by collecting data about your interactions, use and experiences with our products and services. The data we collect depends on the context of your interactions with us and the choices you make, including your privacy settings and the products and features you use. We may also collect data about you from our group and third parties where you have provided consent for sharing. You have choices when it comes to the data you share; however, some data may be necessary for us to provide certain services, and failure to provide it may impact our ability to serve you.

Data collected from the SAL website

The SAL website does not capture or store any personal information about individuals who access it, except where they voluntarily provide personal details by email, using an electronic form to register, using SAL online services or to enquire about our services.

Data collected during visits to our offices and stations

When you visit any SAL office or warehouse facility, SAL will collect information about you before admitting you into the building. This information is used for security checks and monitoring people in the building. Your information may be captured in a visitors book or an access control system.

Data collected through marketing activities

When you participate in, access or sign up to any marketing services, we may receive personal information about you. We use this information to provide the services you have signed up to and for reporting analysis. SAL will only send you marketing communications where you have agreed to this. You may personalise the content based on any information you provide to us.

Data collected through CCTV cameras

SAL uses CCTV cameras to monitor our facilities, offices, and warehouses 24 hours a day. The locations of cameras are chosen to minimise the capture of images that are not relevant to the legitimate purposes of monitoring. CCTV does not record sound. Images are monitored by authorised personnel only and surveillance cameras are not placed in areas where there is an expectation of privacy. SAL does not carry out covert monitoring or surveillance unless highly exceptional circumstances justify it.

Data collected through filming and photography at events

SAL may take or commission photography or filming of events and campaigns for live streaming or digital use (e.g., on our website or social media). We maintain copyright and any other intellectual property in photographs or recordings. Where practically possible we will seek consent in advance and always provide instructions on how you can opt out. Attendees have the right not to appear in an identifiable way in photography or filming. If you wish to withdraw your consent, contact us at DPO@SAL.SA and SALINTERNALCOMMUNICATIONS@SAL.SA.

Data collected through applications for employment

We collect personal information to process employment applications. This includes name, title, addresses, contact details, date of birth, gender, emergency contact information, marital status and dependents, government identification numbers (Iqama, passport), nationality, driving licence number, national address, bank information, qualifications, skills, employment history and GOSI employment history. Sensitive personal information (religion, health, biometric data, criminal background, and family information) may also be collected where necessary (e.g., for health insurance). By providing sensitive personal information, you explicitly agree that we may collect, use and share this data for recruitment purposes.

Employment information collected during employment

During employment we collect data such as work schedules, attendance, leave records, disciplinary or grievance records, performance assessments, training participation, performance improvement plans, salary and benefits information, and health records related to work. Sensitive personal data is limited to circumstances where required and we process such data with appropriate safeguards.

Data collected from telephone calls and virtual meetings

SAL may record and monitor inbound and outbound telephone calls and virtual meetings for training and quality assurance. We collect telephony log information such as phone numbers, date and time of calls, call duration and types of calls. For virtual meetings, you must obtain consent for recording prior to starting a recording and ensure compliance with applicable laws. Recorded meetings are stored and access is restricted using appropriate technical and organisational safeguards.

We collect and use data to:

We share your personal information internally among divisions such as IT, Finance, Marketing, Internal Communication, Procurement and Airport Stations for reporting, communication, and access privileges. We share data with government authorities where required by law (e.g., enrolment in General Organization of Social Insurance (GOSI), Saudi labour law, Muqeem, Tabadul, Washaj). We may share personal information with third party service providers such as the Saudi Airlines Cargo Company (SACC), medical insurance providers and partners administering benefits programs. In such cases, we limit personal data shared to the minimum necessary and require third parties to comply with our instructions and not to process your data for their own purposes.

Reasons we share personal data

We keep your information within SAL except where disclosure is required or permitted by law or as described in this policy. We may share data with controlled affiliates and subsidiaries; with vendors working on our behalf; when required by law or to respond to legal processes; to protect our customers; to protect lives; to maintain the security and legality of our products and services; and to protect the rights and property of SAL and its customers. We do not sell personal information to affiliates and only allow third parties to send you marketing information with your consent.

Offensive or inappropriate content

If you create, post or send offensive, inappropriate, or objectionable content on or to SAL websites or otherwise engage in disruptive behaviour on any SAL service, we may use your personal information to stop such behaviour. Where SAL reasonably believes that you are or may be in breach of any applicable laws (e.g., defamatory content), we may use your personal information to inform relevant third parties such as your employer, internet provider, or law enforcement agencies.

We retain personal data only as long as necessary for the purposes described in this policy or as required by law.

Our retention schedule is as follows:

Under the Saudi Personal Data Protection Law, you have the following rights (subject to certain exceptions):

To exercise these rights, contact our Data Protection Officer at the details below. We will authenticate your identity using secure electronic methods; physical ID copies will only be requested if necessary. We aim to respond to requests within the timeframe required by the PDPL.

The following table maps categories of personal data to their typical purpose and lawful basis for processing under the PDPL. CCTV monitoring is processed under the legitimate interests basis to prevent crime.

Personal data may be transferred outside the Kingdom of Saudi Arabia only when necessary for the purposes described in this policy (for example, when our service providers are based outside KSA or when international air or logistics operations require data to be shared across borders). Such transfers are subject to the conditions, approvals and safeguards required by the PDPL and related regulations. SAL implements contractual and technical measures to ensure that personal data transferred abroad is afforded an adequate level of protection.

SAL uses cookies and similar technologies to make our website work, improve performance, analyse how you use our site and deliver content tailored to your interests. You can choose to accept all cookies or reject non essential cookies. A cookie preferences tool allows you to manage your settings for essential, functional and analytics cookies. For more details, refer to our cookie notice.

Our services are not intended for children under 18 years of age. Individuals under 18 should not create an account without the consent of a parent or guardian. We verify age during registration and, where required, obtain parental consent before processing the personal data of minors. Parents or guardians may request deletion of minors’ data by contacting our Data Protection Officer.

We will only send you marketing communications where you have given consent. You can opt in or opt out of marketing at any time using the unsubscribe link in our communications or by updating your preferences via our cookie and marketing settings. Opting out of marketing does not affect your access to our core services.

When we share personal data with service providers, affiliates, or business partners, we do so under contractual arrangements that require them to implement appropriate technical and organisational measures to protect personal data, respect confidentiality and use the data only for the purposes specified by SAL. We conduct due diligence and audits to verify compliance and do not allow these third parties to use your data for their own purposes.

SAL takes appropriate technical and organisational measures to safeguard personal data, including encryption, strict access controls, cybersecurity frameworks, employee training, and regular audits. We follow the National Cybersecurity Authority’s guidelines and industry best practices. In the event of a data breach that results in a risk to your rights and freedoms, we will notify the relevant authorities and affected individuals in accordance with the PDPL.

To exercise your rights or for any inquiries regarding this policy or your personal data, please contact our Data Protection Officer:

We may use secure electronic methods to verify your identity when processing your request; physical ID copies will only be required where necessary.

This privacy policy may be updated from time to time. The most recent revisions will appear in this section. We will not reduce your rights under this policy without your explicit consent. For material changes that affect how we process your personal data, we will notify you via email or by placing a prominent notice on our website.