Privacy Policy

Last updated: November 2025

At The Workshop, we are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, store, and protect your data in compliance with Egyptian data protection laws and international standards.

Information We Collect

Personal Information

When you use our services, we collect:

  • Account Information: Name, phone number, email address
  • Shipping Information: Delivery address, governorate, city, postal code
  • Payment Information: Payment method details (processed securely through Paymob)
  • Order Information: Files uploaded, printing preferences, order history

Technical Information

  • IP address and device information
  • Browser type and version
  • Pages visited and time spent on our website
  • Referral source and navigation patterns

How We Use Your Information

We use your personal information to:

  • Process and fulfill your 3D printing orders
  • Communicate with you about your orders and account
  • Send SMS notifications for order verification and updates
  • Process payments securely
  • Arrange delivery of your products
  • Provide customer support
  • Improve our services and website functionality
  • Comply with legal obligations

Data Storage and Security

Storage Location

Your data is stored securely using:

  • Supabase (PostgreSQL database) - Cloud infrastructure with enterprise-grade security
  • Supabase Storage - Encrypted file storage for your 3D models
  • All data is encrypted in transit using TLS/SSL protocols

Security Measures

  • Password encryption using industry-standard hashing
  • Two-factor authentication for admin access
  • Regular security audits and updates
  • Access controls limiting who can view your data
  • Secure payment processing through Paymob (PCI DSS compliant)

Data Sharing and Third Parties

We only share your information with trusted third parties necessary for our service:

  • Paymob: Payment processing (they do not store your full card details)
  • Twilio: SMS delivery for OTP verification
  • Delivery Partners: Contact information for order delivery only
  • Supabase: Cloud infrastructure and database hosting

We never sell, rent, or trade your personal information to third parties for marketing purposes.

Your Rights

Under Egyptian data protection laws, you have the right to:

  • Access: Request a copy of the personal data we hold about you
  • Correction: Request correction of inaccurate or incomplete data
  • Deletion: Request deletion of your personal data (subject to legal obligations)
  • Data Portability: Receive your data in a structured, machine-readable format
  • Withdraw Consent: Withdraw consent for data processing at any time
  • Object: Object to certain types of data processing

Data Retention

We retain your personal information for as long as necessary to:

  • Fulfill the purposes outlined in this policy
  • Comply with legal, accounting, and reporting obligations
  • Resolve disputes and enforce our agreements

Generally, we retain order data for 7 years for tax and legal compliance purposes. Account data is retained until you request deletion.

Cookies and Tracking

We use essential cookies to:

  • Maintain your login session
  • Remember your preferences
  • Ensure website functionality and security

You can control cookies through your browser settings, but disabling them may affect website functionality.

Children's Privacy

Our services are not directed to individuals under the age of 18. We do not knowingly collect personal information from children. If you believe a child has provided us with personal information, please contact us immediately.

International Data Transfers

Your data may be processed and stored on servers located outside of Egypt. We ensure appropriate safeguards are in place to protect your data in accordance with this Privacy Policy and applicable data protection laws.

Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes by posting the updated policy on our website with a new "Last Updated" date. Your continued use of our services after changes indicates acceptance of the updated policy.

Contact Us

For questions about this Privacy Policy or to exercise your data rights, contact us:

Compliance

This Privacy Policy complies with Egyptian Law No. 151 of 2020 on the Protection of Personal Data and aligns with international data protection standards including GDPR principles.