Legal

Privacy Policy

Last updated: July 12, 2026

1. Overview

Insaan Global ("Insaan Global," "we," "us," or "our") is committed to protecting your privacy and handling your personal data with transparency, integrity, and care. This Privacy Policy explains how we collect, use, store, share, and protect information in connection with our business process outsourcing (BPO) services, our website at www.insaanglobal.com, and all associated platforms, tools, and communications.

This Policy applies to:

  • Visitors to our website and digital properties
  • Prospective clients and business contacts who engage with us
  • Clients and their authorized users who access our services
  • Job applicants and candidates who apply through our careers portal
  • Employees, contractors, and operational staff
  • Third-party data subjects whose personal information is processed as part of our service delivery

By accessing our website, using our services, or submitting information to us, you acknowledge that you have read and understood this Privacy Policy. If you do not agree with our practices, please do not use our website or services.

2. Who We Are

Insaan Global is a business process outsourcing company with operations across North America and the Middle East. Our primary delivery hub is located at:

Insaan Global

7th Circle, Abdullah Ghosheh St

Amman, Jordan

Email: info@insaanglobal.com

Privacy inquiries: hr@insaanglobal.com

For the purposes of applicable data protection law, Insaan Global acts as a data controller with respect to personal data collected through our website, marketing activities, and employment processes. In the context of service delivery on behalf of clients, Insaan Global may act as a data processor, processing personal data on the instructions of our clients who act as data controllers.

3. Data We Collect

We collect personal data in several categories depending on how you interact with us:

3.1 Website Visitors

  • IP address and approximate geolocation
  • Browser type, operating system, and device identifiers
  • Pages visited, time on site, and navigation behavior
  • Referring URLs and search terms
  • Cookie identifiers and session data

3.2 Prospective Clients & Business Contacts

  • Full name and job title
  • Business email address and phone number
  • Company name, industry, and size
  • Nature of outsourcing needs and operational requirements communicated to us
  • Correspondence and meeting records

3.3 Clients & Authorized Users

  • Account credentials and login information
  • Billing and payment information (processed via secure third-party providers)
  • Contract and service agreement details
  • Operational configuration and instructions provided to our teams
  • Communication records, feedback, and service requests

3.4 Job Applicants

  • Full name, date of birth, and national identification
  • Contact information including email, phone, and home address
  • Resume, CV, cover letter, and portfolio materials
  • Employment history, education, and professional qualifications
  • References and reference contact information
  • Results of any assessments or interviews conducted
  • Right-to-work documentation

3.5 Employees & Operational Staff

In our capacity as employer, we collect and maintain a comprehensive set of employment-related personal data, governed separately by our internal HR policies and applicable employment law, including the Jordanian Labour Law No. 8 of 1996 and its amendments. This includes payroll data, social security information, performance records, and related employment documentation.

3.6 Data Processed on Behalf of Clients

In delivering BPO services, our teams may process personal data belonging to our clients' customers, prospects, or business contacts. This data is processed strictly under the instructions of our clients. Insaan Global does not use client customer data for its own purposes. The type, scope, and purpose of such processing is governed by the applicable client data processing agreement.

4. How We Collect Data

We collect personal data through the following means:

  • Directly from you — when you contact us, complete a form, submit a job application, or enter into a service agreement
  • Automatically — through cookies, web analytics tools, and server logs when you visit our website
  • From clients — when clients share data with us to enable service delivery
  • From third parties — such as LinkedIn or professional directories, in the context of business development or recruitment
  • Through operational systems — when our teams interact with client platforms, CRM systems, telephony tools, or communication channels in the course of service delivery

5. How We Use Your Data

We use personal data for the following purposes:

5.1 Service Delivery

  • Designing, onboarding, and operating dedicated outsourced teams for clients
  • Managing client accounts and service relationships
  • Monitoring and improving operational performance via the NAS-AI platform
  • Communicating with clients about their programs and deliverables

5.2 Business Operations

  • Processing inquiries and responding to prospective clients
  • Preparing and executing service agreements and contracts
  • Managing billing, invoicing, and financial records
  • Ensuring compliance with our legal and regulatory obligations

5.3 Employment & HR

  • Evaluating and processing job applications
  • Onboarding and managing employees and contractors
  • Payroll processing and social security administration
  • Performance management and training
  • Compliance with employment law requirements

5.4 Website & Marketing

  • Operating and improving our website and digital properties
  • Analyzing website traffic and user behavior via Google Analytics
  • Sending marketing communications to prospective clients who have expressed interest (where lawfully permitted)
  • Managing our social media presence and content

5.5 Security & Compliance

  • Monitoring systems and operations for security threats and unauthorized access
  • Maintaining audit logs and records required by applicable law
  • Investigating and responding to incidents or complaints
  • Enforcing our contractual rights and legal obligations

7. Data Sharing & Disclosure

We do not sell, rent, or trade personal data. We share personal data only in the following circumstances:

7.1 Service Providers & Subprocessors

We engage trusted third-party service providers who process data on our behalf and under our instructions, including:

  • Cloud infrastructure and hosting providers (e.g., Vercel, Supabase)
  • CRM and business software providers
  • Telephony and communication platforms
  • Payment processing providers
  • Analytics and performance monitoring tools (e.g., Google Analytics)
  • Email and marketing communication platforms

All subprocessors are contractually required to maintain appropriate data protection standards and to process personal data only as instructed.

7.2 Clients

We may share operational performance data, quality reports, and relevant team information with our clients as part of the service relationship and under the terms of our client agreements.

7.3 Legal & Regulatory Authorities

We may disclose personal data to government authorities, courts, or regulators where required by applicable law, legal process, or to protect the rights, property, or safety of Insaan Global, our clients, or others.

7.4 Business Transfers

In the event of a merger, acquisition, restructuring, or sale of assets, personal data may be transferred to the relevant successor entity, subject to equivalent data protection commitments.

8. International Data Transfers

Insaan Global operates across North America and the Middle East, and personal data may be transferred between these regions as part of our operations. When personal data is transferred internationally, we ensure appropriate safeguards are in place, including:

  • Contractual protections between Insaan Global entities and their subprocessors
  • Data Processing Agreements with clients that specify transfer restrictions and protections
  • Implementation of appropriate technical and organizational security measures

Where personal data originating from the European Economic Area or the United Kingdom is involved, we implement appropriate transfer mechanisms in accordance with applicable data protection law, including the use of Standard Contractual Clauses where required.

9. Data Retention

We retain personal data only for as long as necessary to fulfil the purposes for which it was collected, or as required by law. Our general retention principles are:

  • Website visitor data: up to 26 months via analytics tools, subject to cookie consent settings
  • Client and prospect data: for the duration of the business relationship, plus up to 7 years for legal and financial record-keeping purposes
  • Job applicant data: 6 months from the conclusion of the recruitment process for unsuccessful applicants, or longer if the applicant consents to being considered for future roles
  • Employee data: for the duration of employment plus the period required by Jordanian Labour Law and tax regulations (generally 7–10 years)
  • Data processed on behalf of clients: as specified in the applicable data processing agreement and deleted or returned upon contract termination

Upon expiry of the applicable retention period, data is securely deleted or anonymized in accordance with our data disposal procedures.

10. Your Rights

Depending on your location and the applicable law, you may have the following rights with respect to your personal data:

  • Right of access — to request a copy of the personal data we hold about you
  • Right to rectification — to request correction of inaccurate or incomplete data
  • Right to erasure — to request deletion of your personal data in certain circumstances
  • Right to restriction of processing — to request that we limit how we use your data in certain circumstances
  • Right to data portability — to receive your personal data in a structured, machine-readable format in certain circumstances
  • Right to object — to object to processing based on legitimate interests or for direct marketing purposes
  • Right to withdraw consent — where processing is based on consent, to withdraw that consent at any time without affecting the lawfulness of prior processing
  • Right to lodge a complaint — with a relevant supervisory authority if you believe your data protection rights have been violated

To exercise any of these rights, please contact us at hr@insaanglobal.com. We will respond to verified requests within 30 days. We may need to verify your identity before processing certain requests.

Note that some rights are subject to limitations — for example, we may need to retain certain data to comply with legal obligations even where a deletion request is made.

11. Cookies & Tracking Technologies

Our website uses cookies and similar tracking technologies to operate, analyze, and improve our digital properties. Cookies are small text files placed on your device by your browser when you visit our site.

11.1 Types of Cookies We Use

  • Essential cookies — required for the website to function. These cannot be disabled.
  • Analytics cookies — used to understand how visitors interact with our website (Google Analytics). These collect anonymized data about page views, session duration, and navigation.
  • Preference cookies — used to remember settings and preferences across visits.

11.2 Managing Cookies

You can control and manage cookies through your browser settings. Most browsers allow you to refuse cookies, delete existing cookies, or be notified when cookies are set. Note that disabling certain cookies may affect the functionality of our website.

For information about managing cookies in your specific browser, visit the browser's help documentation or allaboutcookies.org.

11.3 Google Analytics

We use Google Analytics to analyze website traffic. Google Analytics uses cookies to collect anonymized information about how visitors use our site. You can opt out of Google Analytics tracking by installing the Google Analytics Opt-Out Browser Add-on.

12. Security

We implement appropriate technical and organizational measures to protect personal data against unauthorized access, loss, alteration, disclosure, or destruction. These measures include:

  • Encryption of data in transit (TLS/HTTPS) and at rest where appropriate
  • Role-based access controls and principle of least privilege access
  • Multi-factor authentication on systems handling sensitive data
  • Regular security assessments and vulnerability management
  • Staff training on data protection and security practices
  • Incident response procedures with defined notification timelines
  • Physical security controls at operational facilities
  • Continuous monitoring via the NAS-AI operational intelligence platform

While we take security seriously and implement robust protections, no system is completely immune from risk. We encourage you to use strong passwords, protect your access credentials, and notify us immediately if you suspect unauthorized access to any account or data associated with our services.

13. Children's Privacy

Our website and services are directed to business professionals and organizations, not to individuals under the age of 18. We do not knowingly collect, use, or disclose personal data from children. If we become aware that we have inadvertently collected personal data from a minor, we will take steps to delete that information as quickly as possible.

If you believe we may have collected information from a child, please contact us at hr@insaanglobal.com.

14. Third-Party Links

Our website may contain links to third-party websites, platforms, or services that are not operated by Insaan Global. This Privacy Policy does not apply to those third-party properties. We encourage you to review the privacy policies of any third-party sites you visit. Insaan Global has no responsibility or liability for the content, privacy practices, or data handling of third-party websites.

15. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, services, or applicable law. When we make material changes, we will update the "Last updated" date at the top of this page and, where appropriate, notify affected parties by email or through our website.

Your continued use of our website or services after the effective date of any update constitutes your acknowledgment of the revised Privacy Policy. We encourage you to review this Policy periodically.

16. Contact Us

If you have questions, concerns, or requests relating to this Privacy Policy or our data practices, please contact us:

Insaan Global — Privacy & Data Protection

Email: hr@insaanglobal.com

Address: 7th Circle, Abdullah Ghosheh St, Amman, Jordan

We aim to respond to all privacy-related inquiries within 5 business days and to resolve substantive requests within 30 days.