PRIVACY POLICY FOR ALEXANDRIALAB.COM

Last updated: October 9, 2025.

1. Who We Are

Controller (data controller): Alexandria Lab, registered in the State of Qatar, QFC 03573.
Registered address: Level 22, Tornado Tower, Doha, Qatar.
Contact for privacy inquiries and data subject requests (DSAR): privacy@alexandrialab.com; postal address: Level 22, Tornado Tower, Doha, Qatar.
EU representative under Art. 27 GDPR (if required): Not appointed at this time.
UK representative (if required): Not appointed at this time.
Data Protection Officer (if appointed): Not appointed at this time.

2. Scope

This Policy describes how we collect, use, disclose, and protect personal data of visitors to alexandrialab.com, including data submitted via the contact form with the fields: name, company, email, and message ("what do you want to achieve").
The Site is not intended for children: we do not knowingly collect data from persons under 13 (US, COPPA) and under 16 in the EU/EEA. If you believe a child has provided data to us, please contact us for deletion.

3. Data We Collect

Data you provide: Name, Company, Email, Message text.
Data collected automatically: IP address, date/time, browser, device identifiers, referrer, and cookies. See the "Cookies" section for more details.

4. Sources of Data

Directly from you and automatically through server logs, cookies, and analytics scripts.

5. Purposes and Legal Bases

We process data to respond to inquiries, ensure site security and analytics, and send marketing communications (only with your consent). Legal bases depend on jurisdiction and include consent, legitimate interest, and pre-contractual necessity.

6. Cookies and Similar Technologies

We use cookies for strictly necessary, functional, analytics, and (if applicable) marketing purposes. Manage cookies via the banner or browser settings. For EU/UK, non-essential cookies are set only after consent.

7. Disclosures to Third Parties

We share data only with service providers (hosting, email, analytics), public authorities upon lawful requests, or as part of corporate reorganizations. We do not sell or "share" personal data for behavioral advertising.

8. International Transfers

Data may be transferred internationally under safeguards such as SCCs or other lawful mechanisms. Transfers comply with Qatar PDPL and GDPR/UK GDPR.

9. Retention

Contact form data retained up to 24 months, security logs 180 days, analytics data 14 months. Upon expiry, data is deleted or anonymized.

10. Security

We use technical and organizational measures such as encryption, access control, and secure backups. No system is 100% secure. Report incidents to security@alexandrialab.com.

11. Your Rights

Depending on jurisdiction, you may have rights to access, rectify, delete, restrict, object, and port your data. Contact privacy@alexandrialab.com to exercise rights.

12. Necessity of Providing Data

Providing name and email is necessary to process your inquiry; without them, we cannot respond.

13. Third-Party Links

The Site may link to third-party resources. We are not responsible for their practices. Review their policies.

14. Changes to This Policy

We may update this Policy. The last update date is shown above. Material changes will be notified on the Site.

15. Contacts

General inquiries: privacy@alexandrialab.com
Postal address: Level 22, Tornado Tower, Doha, Qatar

16. Notice at Collection (short)

Categories: name, email, company, message, technical data, cookies.
Purposes: respond to inquiries, ensure site operation, analytics, marketing (with consent).
Sale/share: we do not sell or share data.
Retention: see Section 9.
Rights: see Section 11.