Iraq Wallet Company for e-Payment via Internet and Mobile (TaifPay) Introduction Iraq Wallet Company (TaifPay), a company registered under Iraqi laws with certificate number M.Sh-02-82907, and licensed by the Central Bank of Iraq under license number (1) issued on 22/12/2015, is headquartered in Iraq, Baghdad, Al-Khadraa District, Area 631, Street 10, House 129. The company aims to provide electronic payment services via mobile phones and the internet connected to the electronic payment system, offering its customers electronic payment services through the TaifPay application. The company is committed to protecting your privacy and ensuring the security of your personal data and information. We adhere to collecting, using, and storing your personal information in accordance with this privacy policy and the highest security standards. This policy aims to provide you with information on how we collect your data, how we use it, and how we protect it. This privacy policy applies to our website, all associated services and subdomains, as well as the TaifPay application. 1- What Data and Information Do We Collect? We collect the following types of personal data about you: A) Data and information provided when downloading the application and creating an account through the app, including but not limited to your full name, phone number, national ID or passport number, residential address, and any other relevant data. B) Know Your Customer (KYC) and anti-money laundering data and information, including but not limited to the nature of work, types and limits of cash transactions, financial information, password and facial recognition, and any other relevant data. C) Analytical data when using TaifPay services or the application, including:

• Handling complaints, disputes, and inquiries by documenting and recording all forms of communication with us (phone calls, in-app chats, emails, or social media).
• Bank account information used for financial transactions through the app.
• Usage of services available through the app and purchases of goods or services offered within the app.

The personal data you provide must be accurate, complete, up-to-date, and relevant. The Company shall not be responsible for inaccuracies resulting from your error or omission, and you are required to update your data when necessary. 2- Purpose of Collecting This Information This information is collected to enhance service performance in compliance with Iraqi laws, Central Bank of Iraq instructions, and Anti-Money Laundering and Counter-Terrorism Financing regulations. This includes:

• Providing electronic payment services and processing transactions securely.
• Communicating with you, providing technical support, and improving services.
• Complying with legal and regulatory obligations and detecting suspicious or illegal activities.

3- Sharing Information TaifPay is committed to protecting your personal data and will not share it without your consent except where permitted by law. Personal data may be shared with:

• Consulting and support service providers (accounting, legal, administrative, tax).
• Service providers supporting app operations, transactions, marketing, and related services.
• Potential buyers or advisors in cases of sale, merger, liquidation, or asset transfer.
• Regulatory, judicial, or security authorities as required by law.

TaifPay is not legally responsible for unauthorized use of data by third parties. 4- Storage and Processing of Personal Data Personal data is stored and processed on TaifPay servers using secure and encrypted systems, hosted in certified data centers inside or outside Iraq, in compliance with applicable laws. Data is retained only as long as necessary unless a longer period is required by law. 5- Limits of Privacy Policy Application This policy applies only to data collected through TaifPay’s app, website, and electronic services. It does not apply to third-party websites or applications accessed through external links. TaifPay bears no responsibility for third-party data practices. By using the TaifPay app or website, you consent to our use of cookies. You may disable cookies via browser settings, noting that some features may be unavailable without them. 6- How We Collect and Process Your Personal Data Personal data is collected voluntarily through registration or service usage and processed in compliance with Central Bank of Iraq regulations using secure technical and organizational measures. Processing may be conducted internally or through certified third-party processors for the purposes stated in this policy. 7- How We Protect Your Data TaifPay applies strict privacy and security measures including encryption, firewalls, continuous monitoring, and staff training. Data is not shared without consent unless required by law or regulatory authorities. 8- Customer Rights You have the right to access, review, and request correction of your personal data, subject to legal or regulatory restrictions. Providing personal data is mandatory for service provision, and failure to do so may result in service suspension or termination. 9- Data Retention Period Personal data is retained only for the duration necessary to provide TaifPay services and fulfill the purposes of this policy. 10- Auditing TaifPay conducts regular internal and external audits to ensure compliance with data protection laws, Central Bank of Iraq instructions, and Anti-Money Laundering regulations. Systems and security measures are continuously updated. 11- Changes to the Privacy Policy The Company may update this privacy policy periodically. Customers will be notified of material changes via the app or website. Contact Us If you have any questions or concerns regarding this privacy policy, please contact us at:
Email: info@taifib.iq
Phone: 6888