Notifications Mark all as read
New message in Chat 2m
Report ready to view 1h
New login from Chrome 3h
View all
Login

Privacy Policy

ERPwebApp Enterprise Platform
This policy explains how ERPwebApp collects, manages, protects, and processes personal and business data. By using our application, you accept these practices.

1. Data We Collect

HR & Employee Data
  • Employee profiles, national ID, birthdate, gender, and documents (Employees, EmployeeDocuments)
  • Contact details: phones, emails, addresses, emergency contacts (EmployeeContacts, EmployeeAddresses)
  • Banking and salary payout information (EmployeeBankAccounts)
  • Employment history & experience records (EmployeeExperiences)
Organizational & Master Data
  • Company structure: Companies, Holdings, Departments, Sections, Projects, Sites, Jobs
  • Role assignments & mappings (ApplicationUserCompanies)
  • Standardized references (countries, currencies, governorates, cities, etc.) (Countries, Currencies, Governorates, Cities)
  • Lookup datasets (education, personal info) (Universities, Faculties, Certificates, Religions, BloodTypes, MaritalStatuses, MilitaryStatuses)
Attendance, Payroll & KPIs
  • Attendance logs, check-in/out, absences, overtime (EmployeeAttendances, AttendanceRecords)
  • Payslips, benefits, deductions, period history (Payroll, PayrollBenefit, PayrollDeduction, EmployeeBenefits, EmployeeDeductions)
  • Performance goals and KPI evaluations (KPIs, EmployeeKPIs)
  • Penalties and disciplinary records (EmployeePenalties)
Messaging, Email & Collaboration
  • Chat rooms and membership (ChatRooms, RoomMembers)
  • Messages, delivery/read receipts (ChatMessages, MessageReceipts)
  • Direct messages (DirectMessages)
  • Attachments shared in chats (Attachments)
  • Email provider logs and scheduling history (EmailLogs, EmailScheduleLogs, AuditLogEmails)
Note: Message content and attachments are stored to deliver features like room history, receipts, and auditing (where enabled by your administrators).
Preferences & UI Customization
  • Saved UI preferences (theme mode, font, layout density) (UserUiPreferences, UserSettings)
  • Menu favorites and pin/reorder preferences (UserMenuFavorites)
  • Company-scoped settings including logos and integrations (CompanySettings)
  • Permissions configuration (ActionPermissions)

2. How We Use Your Information

  • Manage HR, attendance, payroll, and employee lifecycle
  • Analyze performance via KPIs and managerial reports
  • Enforce secure authentication, authorization, and company-scoped access control
  • Provide collaboration features (chat rooms, messages, attachments, email notifications)
  • Improve usability via preferences (theme, font, favorites) and system diagnostics

3. Data Retention & Security

Encryption: Sensitive data is encrypted at rest and in transit (TLS).
Access Control: Role-based and company-scoped permissions limit data visibility.
Data is retained only as long as necessary for operational, legal, or compliance requirements, and is securely purged once obsolete.

4. Audit & Logging

Full Traceability
  • CRUD actions can be captured with entity name, record ID, action type, user, machine, IP, and timestamp (AuditLogs).
  • Email activity is logged for compliance and troubleshooting (AuditLogEmails, EmailLogs, EmailScheduleLogs).
  • Access permissions are managed and auditable (ActionPermissions, ApplicationUserCompanies).

5. User Responsibilities

Important: Protect your credentials and log out after each session.
  • Access only data authorized for your role/company
  • Do not share exported reports or screenshots containing sensitive data
  • Report suspected account compromise immediately

6. Third-Party Integrations

External systems (email providers, attendance devices, regulatory APIs) must satisfy ERPwebApp security controls and audit standards.
  • External email notifications are logged and auditable.
  • Device-imported attendance is processed only for authorized users.
  • LAN-only systems (e.g., on-prem devices) may require VPN / secured reverse proxy to connect.

7. Detailed Technical Information

System Architecture:
  • Multi-tenant data isolation with claims-based authorization
  • Secure identity and password management
  • Scoped access per company and role
  • Optional collaboration modules: rooms, direct messages, attachments, receipts
  • Preference storage to personalize UI (theme, fonts, density, favorites)
Backups & DR:
  • Encrypted daily backups, secure storage
  • Redundancy for business continuity
Compliance:
  • Aligns with applicable privacy regulations and local laws

8. Your Rights & Requests

  • Request access to your personal/employee information
  • Request correction or deletion of inaccurate/obsolete data
  • Withdraw consent where permitted by law or policy
  • Receive notifications about policy changes
Route requests via your system administrator or IT contact; legal and policy constraints may apply.

9. Updates to this Policy

This policy is reviewed regularly; significant changes are communicated to all users and reflected on this page.
  • Update notifications may appear within ERPwebApp
  • Revision date displayed below

10. Contact & Support

Contact our technical support team for:
  • Privacy questions or complaints
  • Data access, correction, or erasure requests
  • Security incident reporting
Email: [email protected]
Last updated: فبراير 24, 2026