SASAL, INC. (“SASAL,” “we,” “our,” or “us”) is committed to maintaining a secure, transparent, and trustworthy ecosystem for cross-border business collaboration.

1. Security Policy

We implement reasonable technical and organizational measures to protect user data against unauthorized access, loss, or misuse.

These measures may include:

  • Access controls and authentication systems
  • Encryption and secure data transmission
  • Monitoring and logging of system activity
  • Regular security reviews and updates

While we strive to protect all data, no system can be guaranteed to be completely secure.

2. Data Usage Policy

We collect and use data only as necessary to operate and improve the SASAL platform.

Data we may collect:

  • Account and profile information
  • Platform activity and interactions
  • Communication and engagement data

Purpose of use:

  • Providing and improving services
  • Facilitating connections and matching
  • Analytics and service optimization
  • Ensuring platform integrity and security

We do not use personal data for purposes beyond those reasonably necessary without appropriate notice or consent.

3. AI & Algorithm Policy

SASAL may use automated systems and internal logic to support recommendations and matching.

These may include:

  • Profile-based matching
  • Activity-based prioritization
  • Manual curation combined with system support

However:

  • Matching results are not guaranteed
  • Algorithms do not make final decisions independently
  • Users remain responsible for evaluation and decision-making

We aim to balance efficiency with human judgment to ensure high-quality outcomes.

4. Data Processing Terms (DPA Overview)

For business users subject to GDPR or similar regulations:

  • SASAL may act as a data controller for platform operations
  • In certain cases, SASAL may act as a data processor on behalf of users

We implement appropriate safeguards for:

  • Data processing and storage
  • Cross-border data transfers
  • Subprocessor management (where applicable)

A separate Data Processing Agreement (DPA) may be provided upon request for enterprise users.

5. Data Breach & Incident Response Policy

In the event of a data security incident, SASAL will:

  • Promptly investigate the nature and scope of the incident
  • Take necessary measures to contain and mitigate the impact
  • Notify affected users where required by applicable law
  • Implement corrective actions to prevent recurrence

We are committed to transparency and responsible handling of security incidents.