PRIVACY POLICY

To safeguard MOAM Ltd.’s customer and business data in accordance with Afghanistan’s data protection regulations.

This policy applies to all MOAM Ltd.’s digital platform users, employees, contractors, and third parties that have access to or are associated with the processing of personal data.

• Personal Data: Any information relating to an identified or identifiable individual.

• Data Processing: Any operation performed on personal data, whether automated or manual.

• Data Subject: An identified or identifiable individual whose data is processed.

1. General Principles

• Lawfulness, Fairness, and Transparency: Data will be processed legally, fairly, and in a transparent manner.

• Purpose Limitation: Data will only be collected for specified, explicit, and legitimate purposes.

• Data Minimization: Only data that is necessary for the stated purpose will be collected.

• Accuracy: Data will be accurate and kept up to date.

2. Data Protection

• Storage: Personal data will be stored in secure environments. Only authorized individuals will have access to this data.

• Transmission: Any transmission of data will be secured through encryption.

• Retention: Data will be retained only for the duration necessary and will be securely destroyed after.

3. Rights of the Data Subject

• Access: Data subjects have the right to know what data about them is being processed.

• Rectification: Data subjects have the right to have incorrect data about them corrected.

• Deletion: Data subjects have the right to have data about them deleted.

4. Data Breaches

• Notification: In case of a breach, MOAM Ltd will notify the Afghanistan data protection authorities and affected individuals within the stipulated time frame as per Afghanistans data protection regulations.

• Investigation: MOAM Ltd will investigate any breach to ensure it does not happen again

5. Reviews

• This policy will be reviewed annually or whenever there is a major change in the business or in relevant legislation.

6. Enforcement

• Non-compliance with this policy by employees or contractors may lead to disciplinary or other appropriate action.

7. Contact

• For any queries related to this policy, please contact MOAM Ltds (Moby) Data Protection Officer at.

CONFIDENTIALITY

This Schedule is confidential and proprietary to MOAM ltd and, accordingly, is not to be distributed outside of MOAM ltd without written approval of MAOM’s Legal and Compliance.

DEVIATIONS

Any deviations from this policy must be reviewed and approved in accordance with the appropriate policy and signed off by all relevant stakeholders.

POLICY REVISIONS

This policy will be reviewed annually and, if necessary, revised. Any revisions of this policy must be reviewed and approved in accordance with the appropriate policies and signed off by all relevant stakeholders.