• سياسة الخصوصية

سياسة الخصوصية

PRIVACY POLICY

Last Updated: 21 June 2026

1. Introduction

Five Riyal Trading W.L.L. (“Five Riyal”, “we”, “us” or “our”) operates the website Fiveriyal.com, our online store, and the related services, features, content and applications made available through the website collectively referred to as the “Services”.

Five Riyal Trading W.L.L. is established and operates in the State of Qatar.

This Privacy Policy explains how we collect, use, store, disclose, transfer and protect personal data when you:

  • Visit or browse our website.
  • Create or use a customer account.
  • Place or manage an order.
  • Communicate with our customer service team.
  • Subscribe to marketing communications.
  • Participate in promotions, surveys or product reviews.
  • Otherwise interact with our Services.

Our online store is hosted using the Shopify e-commerce platform. Shopify and other service providers may process certain personal data to provide the technical infrastructure necessary to operate the Services.

This Privacy Policy is intended to be read in accordance with the applicable laws of the State of Qatar, including Law No. 13 of 2016 on Protecting Personal Data Privacy and Decree-Law No. 16 of 2010 Promulgating the Electronic Transactions and Commerce Law.

2. Identity of the Data Controller

For personal data collected through the Five Riyal website and Services, the data controller is:

Five Riyal Trading W.L.L.
Commercial Registration No.: [224994]
Registered Address: [St.340, Bulding 484, 2nd floor, office 13]
Doha, State of Qatar
Email: [info@fiveriyal.com]
Telephone/WhatsApp: [71744744]

Five Riyal determines the purposes and means by which customer personal data is processed, except where another service provider processes personal data for its own independently determined purposes.

3. Personal Data We Collect

The personal data we collect depends on how you interact with our Services and may include the following:

3.1 Identity and Contact Information

  • Full name.
  • Mobile telephone number.
  • Email address.
  • Billing address.
  • Delivery address.
  • Any delivery instructions you provide.

3.2 Account Information

  • Customer account username or email address.
  • Encrypted password or authentication information.
  • Account preferences and settings.
  • Saved addresses.
  • Wishlist or saved products, where available.

You are responsible for maintaining the confidentiality of your account credentials and should not share your password or access information with another person.

3.3 Order and Transaction Information

  • Products viewed, selected or added to your cart.
  • Products ordered or previously purchased.
  • Order number and order status.
  • Order value, discounts and promotional codes.
  • Delivery and fulfilment information.
  • Cancellation, refund, replacement or complaint details.
  • Previous transactions with Five Riyal.

3.4 Payment Information

Where online payment is available, payment card information is processed through the applicable payment gateway or financial service provider.

Five Riyal generally receives limited payment information, such as:

  • Payment status.
  • Transaction reference.
  • Payment method.
  • Card type.
  • Limited or masked card information.
  • Refund or cancellation status.

Five Riyal does not intentionally store full payment card security codes. Your payment provider may separately collect and process payment information in accordance with its own privacy and security terms.

For cash-on-delivery orders, we may record the selected payment method, the amount payable and confirmation that payment was collected.

3.5 Communications and Customer Service Information

We collect the information you provide when you contact us through:

  • Email.
  • Telephone.
  • WhatsApp.
  • Social media.
  • Website forms.
  • Customer service or complaint channels.

This may include your messages, requests, complaint information, photographs of defective or incorrect products and other supporting documents.

3.6 Device, Technical and Usage Information

When you use our website, certain technical information may be collected automatically, including:

  • Internet Protocol address.
  • Browser type and version.
  • Device type.
  • Operating system.
  • Language and time-zone settings.
  • Website pages visited.
  • Date and time of access.
  • Referring website or advertising source.
  • Shopping and browsing activity.
  • Cookie and similar technology identifiers.

3.7 Marketing Preferences

We may record:

  • Whether you consented to receive marketing communications.
  • The communication channels you selected.
  • The date and method through which consent was obtained.
  • Your unsubscribe or opt-out requests.
  • Your advertising and cookie preferences.

4. How We Collect Personal Data

We may collect personal data from the following sources:

4.1 Directly From You

For example, when you:

  • Create an account.
  • Place an order.
  • Enter your delivery information.
  • Contact customer service.
  • Submit a complaint.
  • Subscribe to promotional communications.
  • Complete a form, survey or review.

4.2 Automatically Through the Website

Certain information may be collected automatically through cookies, log files, pixels and similar technologies when you browse or use our website.

4.3 From Service Providers

We may receive information from service providers involved in operating the Services, including:

  • Shopify.
  • Payment gateways.
  • Banks and financial institutions.
  • Delivery and logistics companies.
  • Customer communication platforms.
  • Website analytics and security providers.
  • Advertising platforms, where permitted.

4.4 From Other Lawful Sources

We may receive information from social media platforms, business partners or other third parties where you have authorised the disclosure or where collection is otherwise permitted by applicable law.

5. Purposes for Processing Personal Data

We process personal data only for disclosed, specific and lawful purposes, including the following:

5.1 Processing and Fulfilling Orders

We use personal data to:

  • Receive and confirm orders.
  • Process payments.
  • Prepare and package products.
  • Arrange delivery.
  • Communicate order and delivery updates.
  • Verify delivery information.
  • Manage cancellations, refunds or replacements.
  • Maintain transaction records.

5.2 Managing Customer Accounts

We use personal data to:

  • Create and maintain customer accounts.
  • Authenticate customer access.
  • Save customer preferences.
  • Display order history.
  • Provide account-related services.

5.3 Customer Service and Complaints

We process personal data to:

  • Respond to questions and requests.
  • Investigate complaints.
  • Resolve order or delivery issues.
  • Provide after-sales assistance.
  • Verify evidence relating to damaged, defective or incorrect products.

5.4 Security and Fraud Prevention

We may process personal data to:

  • Protect customer accounts.
  • Detect and prevent fraud.
  • Identify suspicious transactions.
  • Prevent misuse of the website.
  • Protect our customers, employees, systems and business.
  • Investigate actual or suspected illegal activities.

5.5 Improving Our Services

We may use personal data and aggregated information to:

  • Understand how customers use our website.
  • Improve website performance.
  • Develop or improve products and services.
  • Improve the shopping and delivery experience.
  • Correct technical problems.
  • Measure customer satisfaction.

Where reasonably possible, we use aggregated or anonymised information for these purposes.

5.6 Compliance With Legal Obligations

We may process personal data where necessary to:

  • Comply with applicable laws and regulations.
  • Maintain legally required accounting and transaction records.
  • Respond to lawful requests from competent authorities.
  • Establish, exercise or defend legal claims.
  • Enforce our terms and policies.
  • Cooperate with regulatory, judicial or law-enforcement authorities.

6. Legal Basis for Processing

Depending on the circumstances, we process personal data based on one or more of the following:

  • Your prior consent.
  • The necessity to process and fulfil your order or another transaction requested by you.
  • A lawful purpose connected with operating and protecting our business.
  • Compliance with an applicable legal or regulatory obligation.
  • The establishment, exercise or defence of legal rights or claims.
  • Protection against fraud, security threats or unlawful activity.

Where processing is based on consent, you may withdraw your consent at any time. Withdrawal will not affect processing lawfully completed before consent was withdrawn.

Some personal data is necessary to process an order. Where you do not provide this information, we may be unable to accept, fulfil or deliver your order.

7. Marketing Communications

We will send direct marketing communications by email, SMS, WhatsApp or another electronic channel only where we have obtained the required prior consent.

Marketing consent is separate from communications necessary to process or deliver an order.

Every marketing communication sent by us will, where applicable:

  • Identify Five Riyal as the sender.
  • Make clear that the communication is promotional or marketing-related.
  • Provide a valid and accessible way to unsubscribe or withdraw consent.

You may withdraw your marketing consent at any time by:

  • Selecting the unsubscribe option in the communication.
  • Contacting our customer service team.
  • Updating your communication preferences, where available.

After you unsubscribe, we may continue to send non-marketing communications relating to your account, current orders, payments, delivery, security notices or customer service requests.

8. Cookies and Similar Technologies

Our website uses cookies and similar technologies to operate and improve the Services.

These technologies may include:

8.1 Strictly Necessary Cookies

These cookies are required to:

  • Operate the shopping cart.
  • Process checkout.
  • Maintain website security.
  • Remember account sessions.
  • Provide functions requested by the customer.

8.2 Preference Cookies

These cookies remember preferences such as language, location or display settings.

8.3 Analytics Cookies

These cookies help us understand website traffic, performance and customer interaction with the Services.

8.4 Advertising Cookies

Where permitted and subject to the required consent, these cookies may be used to measure advertisements, limit repeated advertisements and display advertisements that may be relevant to your interests.

Where consent is legally required, non-essential cookies will be used in accordance with the choices made through our cookie consent settings.

You may manage cookies through the cookie banner or your browser settings. Disabling strictly necessary cookies may prevent parts of the website from functioning correctly.

9. Disclosure of Personal Data

We do not sell customer personal data in exchange for money.

We may disclose personal data only where necessary and for a lawful and disclosed purpose, including to the following categories of recipients:

9.1 Shopify

Our store is powered by Shopify. Shopify processes information necessary to host and operate the online store, provide checkout functionality, maintain security and provide related platform services.

In certain circumstances, Shopify may process personal data for its own separately determined purposes. Customers may review Shopify’s Consumer Privacy Policy and privacy options through Shopify’s official legal and privacy pages.

9.2 Payment Service Providers

We may disclose transaction information to payment gateways, banks and financial service providers for:

  • Processing payments.
  • Confirming transactions.
  • Issuing refunds.
  • Preventing fraud.
  • Resolving payment disputes.

9.3 Delivery and Logistics Providers

We may share information such as your name, telephone number, address, order reference and delivery instructions with delivery companies to fulfil your order.

9.4 Technology and Business Service Providers

We may use service providers for:

  • Website hosting and maintenance.
  • Cloud storage.
  • Cybersecurity.
  • Customer support.
  • Data analytics.
  • Messaging and order notifications.
  • Inventory and order management.
  • Marketing services, subject to your consent where required.

Service providers are permitted to process personal data only for the agreed services and subject to appropriate confidentiality, security and data protection requirements.

9.5 Professional Advisers

We may disclose information where necessary to legal advisers, accountants, auditors, insurers or other professional consultants who are subject to confidentiality obligations.

9.6 Government and Regulatory Authorities

We may disclose personal data where required or permitted by law, including in response to a lawful request from:

  • Courts.
  • Law-enforcement bodies.
  • Regulatory authorities.
  • Government departments.
  • Other legally competent authorities.

9.7 Business Restructuring

If Five Riyal is involved in a merger, acquisition, restructuring, financing or sale of all or part of its business, relevant personal data may be disclosed to the parties and advisers involved, subject to applicable confidentiality and data protection requirements.

10. International Data Transfers

Shopify and some of our technology, cloud, payment, communication or service providers may process or store personal data outside the State of Qatar.

Where personal data is transferred or made accessible outside Qatar, we will take reasonable steps to ensure that:

  • The transfer is connected to a disclosed and lawful purpose.
  • The recipient processes the data only as necessary.
  • Appropriate contractual, administrative and technical safeguards are applied.
  • The transfer does not violate applicable Qatar law.
  • The processing does not create a serious risk of harm to the personal data or the privacy of the individual.

The countries in which data is processed may have data protection rules that differ from those of Qatar.

Shopify operates internationally and may transfer personal data between its entities and approved service providers to operate its platform. Shopify provides information about its international data-transfer practices through its official privacy documentation.

11. Data Security

We take reasonable administrative, technical and organisational measures appropriate to the nature and importance of the personal data we process.

These measures may include:

  • Access controls.
  • Password and authentication controls.
  • Encryption where appropriate.
  • Secure communication technologies.
  • System monitoring.
  • Staff access restrictions.
  • Service-provider confidentiality requirements.
  • Security updates and backups.
  • Procedures for handling security incidents.

However, no electronic system or method of data transmission is completely secure. Customers should use strong passwords, protect their account credentials and avoid sending confidential payment or identification information through unsecured channels.

Where a personal-data security breach may cause serious harm to personal data or individual privacy, we will take the notification and corrective measures required by applicable Qatar law. Qatar’s data privacy law requires notification to the individual and the competent authority where the relevant security breach may cause serious damage.

12. Retention of Personal Data

We retain personal data only for as long as reasonably necessary for the purposes for which it was collected or as required by applicable law.

The retention period may depend on:

  • The duration of the customer relationship.
  • Whether the customer maintains an active account.
  • The time necessary to fulfil an order.
  • Accounting and transaction-record requirements.
  • Consumer complaints or warranty matters.
  • Fraud prevention and security requirements.
  • Existing or potential legal proceedings.
  • Requirements imposed by competent authorities.

When personal data is no longer required, we will take reasonable steps to delete, securely destroy or anonymise it, unless retention is required or permitted by law.

13. Your Personal Data Rights

Subject to applicable Qatar law and any lawful exceptions, you may have the right to:

13.1 Withdraw Consent

You may withdraw previously provided consent for processing that is based on consent.

13.2 Object to Processing

You may object where processing:

  • Is unnecessary for the purpose for which the data was collected.
  • Exceeds what is reasonably required.
  • Is discriminatory, unfair or unlawful.

13.3 Request Deletion

You may request deletion of personal data where:

  • Consent has been withdrawn and no other lawful basis applies.
  • The data is no longer required for the purpose for which it was collected.
  • The processing is unlawful.
  • The lawful justification for retaining the information no longer exists.

13.4 Request Correction

You may request correction or completion of inaccurate or incomplete personal data. We may request supporting information to verify the correction.

13.5 Access Personal Data

You may request:

  • Confirmation of whether we process personal data relating to you.
  • Information about the purposes of the processing.
  • Access to the relevant personal data.
  • A copy of your personal data, subject to applicable legal requirements.

13.6 Be Informed of Inaccurate Disclosure

You may request information where inaccurate personal data relating to you has been disclosed, as provided under applicable law.

These rights are not absolute and may be restricted where processing or retention is required by law, necessary for an existing transaction, required to protect another person’s rights or necessary for legal proceedings.

14. How to Exercise Your Rights

To exercise a personal-data right, contact us using the details shown in Section 2.

Your request should include:

  • Your full name.
  • The mobile number or email associated with your account.
  • A clear description of your request.
  • The relevant order number, where applicable.

We may request reasonable information to verify your identity and prevent unauthorised access to personal data.

We will handle valid requests within a reasonable period and in accordance with applicable law.

15. Children and Minors

The Services are intended for persons legally capable of entering into online transactions under applicable law.

A minor should use the Services only with the involvement and approval of a parent or legal guardian.

We do not knowingly seek to collect personal data directly from minors without appropriate authorisation. Where a parent or legal guardian believes that a minor has provided personal data without appropriate approval, they may contact us to request review and deletion of that information, subject to applicable legal requirements.

16. Third-Party Websites and Services

Our website may include links to websites, payment services, social media platforms or other services operated by third parties.

Five Riyal does not control the privacy, security or data-processing practices of independent third parties. Customers should review the privacy policies and terms of those services before providing personal data.

The inclusion of a third-party link does not necessarily mean that Five Riyal endorses or accepts responsibility for that third party’s content or practices.

17. Changes to This Privacy Policy

We may update this Privacy Policy to reflect:

  • Changes to our Services.
  • Changes to our data-processing practices.
  • New service providers or technologies.
  • Legal or regulatory requirements.
  • Security or operational improvements.

The revised policy will be published on the website with an updated revision date.

Where required by law or where a change materially affects how personal data is processed, we will provide an appropriate notice or request additional consent.

18. Complaints

Customers who have questions or complaints about how their personal data is processed should first contact Five Riyal using the contact details stated in this Privacy Policy.

We will review the complaint and take appropriate corrective action where necessary.

If the matter is not resolved, the customer may contact the competent personal-data privacy authority in the State of Qatar. The National Cyber Governance and Assurance Affairs of Qatar’s National Cyber Security Agency currently oversees implementation of the Personal Data Privacy Protection Law and provides the contact email privacy@ncsa.gov.qa.

19. Governing Law

This Privacy Policy and the processing of personal data by Five Riyal are governed by the applicable laws and regulations of the State of Qatar.

Any dispute shall be subject to the jurisdiction of the competent courts of the State of Qatar, unless applicable law requires otherwise.

20. Contact Us

For questions, complaints or requests relating to this Privacy Policy or your personal data, contact:

Five Riyal Trading W.L.L.
Commercial Registration No.: [224994]
Registered Address: [St.340, Bulding 484, 2nd floor, office 13]
Doha, State of Qatar
Email: info@fiveriyal.com
Telephone/WhatsApp: [71744700]
Website: Fiveriyal.com