This message/document has been classified as “Confidential”

iSkip Privacy Policy for Customers

Seven Solutions Inc. and/or its subsidiaries ("iSkip," the "Company," "we," "us," and "our,") is

committed to protecting user privacy. This privacy policy governs how personal data is processed

through the iSkip application, website, email, text, social media accounts, and any other associated

electronic services (collectively, referred to as "Services"). However, it does NOT apply to

information that you provide to, or that is collected by, any third-party (such as restaurants, issuers of

Merchant Gift Cards or Coupons you purchase through our Sites, and social networks that you use in

connection with our Sites). For information about third-party privacy practices, please consult with

them directly. Kindly note that your use of any of the company’s services is subject to iSkip’s Terms

and Conditions.

By using the application and services, you acknowledge that you have read this Privacy Policy

carefully and that you agree with it without reservation and consent to iSkip’s collection, use,

disclosure, retention, and protection of your personal information as described here.

1. Information we collect and use

1.1 Information you provide

iSkip collects several types of information from and about users of its services including personal

information. “Personal information” is data that identifies, relates to, describes, can be used to

contact, or could reasonably be linked directly or indirectly to you. The following categories of

personal information are gathered as you visit/use our services:

• Personal details (such as name and birthday)

• Contact details (such as email address, postal address, phone number)

• Dining information (such as primary dining city; current and past restaurant reservation

details; dining preferences; favorite restaurants; special restaurant requests; dining activities

including frequency, restaurants, restaurant type, meal type, and cancellations)

• Account information (such as account settings and passwords)

• Social media data (if you choose to link your iSkip account or login using a social media

account, we may collect personal information such as name, age, gender, photographs, and

other personal information relating to your social media account). iSkip advises you to

consult the privacy policy of your social media service provider to ascertain what data is

processed by your social media service provider when you use the social media login feature.

We will not send any of the personal data you provide via iSkip application to social media

service providers unless you consent to it.

• Billing information (such as credit, debit, or other payments card information)

This message/document has been classified as “Confidential”

• Your contacts (such as contact information of people you add to, or notify of, your restaurant

reservations through our Services)

• Your preferences (including surveys and marketing responses)

• Photos of you (such as if you add a photo of yourself to your profile, upload photos to a

review or restaurant’s profile, or link your social media account to your iSkip account)

• Communications you send us (such as customer support and other requests you make

through our Services and through restaurants)

• Restaurant reviews and content (including reviews, photos, an alias of your choosing that you

can use when submitting reviews, and other information you provide through our Services)

• Promotion information (if you choose to participate in a contest, or similar campaigns, we

will collect any information you provide in relation to such activity, such as photos, images,

captions, or other content, in accordance with the terms provided at that time)

You have the right to withhold any of the aforementioned information at your own choosing.

However, if you do not provide the information iSkip requires, iSkip may not be able to provide all of

its Services to you.

1.2 Information generated by us

In relation to user data processing, please be informed that we may automatically collect information

about your interactions with the Services or communications you receive (such as email) using

certain technologies, such as cookies (cookies are small text files that are stored on a device’s hard

drive and contain certain information and sometimes personal data), web beacons and other

technologies. The information generated by us can be listed as follows:

• Device information - (e.g., mobile, computer, laptop, tablet) used to visit or use our

application including, but not limited to, operating system, access times, browser information

(type, language, and history), settings, and other data about your device that we use to

provide the services

• Usage and performance information - (e.g., searches or interactions with features of our

Services; sites or restaurant pages visited; booking paths; access times; and performance of

our Services).

• Location information - generic location information (such as city or neighborhood) are

automatically collected. Precise geographic location data is collected in accordance with your

consent to location information. Instances where such information can be collected can

include restaurant location searches, dining city entry in account settings, proximity to certain

beacons, publishing your locations when leaving restaurant reviews, and comments or other

communications shared with us. The use and storage of these information can help us tailor

This message/document has been classified as “Confidential”

your needs and better your experience in a more relevant matter depending on your dining

city or cities you visit.

Personal information, device information, and location information are collectively referred to as

"your information." With your consent, where required, these information may be combined to

provide tailored services specific to your liking.

Our Sites are for persons 16 or older. As such, iSkip does not knowingly collect personal information

from children under the age of 16. If you learn that your child has provided us with their information

without your consent and he or she is under the age of 16, please let us know at App@iSkip.sa so we

may remove it from our systems.

1.3 How we use your information

Personal information are used for the following purposes:

- Service provision and functionality (including but not limited to making reservations,

reviewing restaurants, paying for services or events, joining waitlists, and notifying people

you add to or notify of your restaurant reservations through our Services)

- Authentication and identification of account credentials for security purposes as needed to

log you into your account

- Communication and support provided by us to better serve you and follow up on your

comments or queries

- Marketing communications and relevant advertisement content based on past and current

user behavior in compliance with law

- Operation and improvement/development of new products and services – i.e. the use of

analytics to enhance user experience and tailor services specific to your preferences or

restrictions. These information may also be provided to restaurants groups and restaurant

affiliates

- Link or combine with other information we get from third parties to help understand your

needs and provide you with better service

- Display of your reservations and purchases made through or site/application

- Processing and delivering ad-hoc contest entries and rewards

- Financial information authentication (credit or debit account information)

- Protect, investigate, and deter against fraudulent, unauthorized, or illegal activity

- Comply with our policies, procedures and legal obligations

- As otherwise consented to by you and as required or permitted by applicable law. Your

consent can be withdrawn at any time by contacting us using the details below. For more

information, you may refer to Your Rights and Choices section.

This message/document has been classified as “Confidential”

Electronic Communications

In accordance with the above stated purposes and as permitted by applicable law, we may

communicate with you via electronic messages, including email, text message, or mobile

push notification to send you information about your reservations, waitlist confirmations,

reminders and updates, receipts, technical notices, security alerts, and administrative

messages. We may also communicate with you about contests, rewards, promotions,

upcoming events, and other products and services offered by iSkip, restaurants, and other

partners.

Our Role as Data Controller and Data Processor

We generally act as the data controller of your information; however, under certain iSkip

programs, restaurants may engage us to provide them with certain processing services

related to information owned or controlled by the restaurant. We are not responsible for any

restaurant's use of information for which it is an owner or controller. iSkip advises you to

review restaurants’ privacy policy to learn more about how they may use this data.

Aggregate Information- We aggregate personal information collected directly from you,

information generated about you by us, and information obtained from third parties (with

your consent, where required) with personal information collected about other users in order

to produce general statistics that cannot be linked to you or any other specific user.

Information that has been aggregated and de-identified is no longer considered “personal

information” and may be subsequently used for any purpose.

Anonymized Information- We may process information that cannot be linked to you or any

other specific user using any means available to us, either because it was collected

anonymously or has been subsequently anonymized. Information that is anonymous or has

been anonymized is no longer considered “personal information” and may be subsequently

used for any purpose.

Retention- We may retain your personal information for as long as your account is active

and for a period of time thereafter to allow you to re-activate your account without loss of

information. We may also retain your personal information as necessary to:

a. Maintain logs and business records for analysis, security, and/or audit purposes

b. Comply with record retention requirements under the law

This message/document has been classified as “Confidential”

c. Deal with any complaints regarding the Services; and

d. Comply with our legal obligations, protect or defend our rights, resolve disputes and

enforce our contracts

2. Information we Share

2.1 Information Shared with Restaurants and their Affiliates

To facilitate the use of services provided by our site/application, we automatically provide your

information to the restaurant when you make a reservation, join a waitlist, make a payment

through our services, purchasing an event ticket, or if you are a guest to the person making the

request. this information may include your name, profile, time and date of visit, party size, your

phone number, your dining preferences, guest information, any special requests , information or

comments that you choose to submit (if any ) and your email address. Your information is

provided to the restaurant, just as it would if you contacted the restaurant directly. If you provide

a mobile phone number in connection with your request, restaurants may send you text

messages regarding your request. Some restaurants also require you to provide credit or debit

card account information to secure your reservation.

Depending on where you reside, and as permitted by applicable law, we or the restaurant may

additionally share your information with restaurants’ affiliates (such as affiliated brands),

restaurant groups and/or restaurants with the same brand or parent-brand, or other entities

associated with such restaurant (such as the parent entity of the restaurant group or affiliated

hotels) and/or their service providers (collectively, the associated entities and service providers,

such restaurant’s "restaurant affiliates ") under iSkip’s programs. When you make a reservation at

a restaurant that is part of a restaurant group, we may also share additional information about

your dining activity at that restaurant or restaurant group in the past, your dining preferences

and/or information that we collect from you and third parties that may be relevant to that

reservation (such as, trying to seat you by a window, if you previously expressed a preference for

window seating).

Moreover, to provide a better tailored experience for you and as permitted by applicable law, we

may share your information to restaurant affiliates who will perform specific analytics, targeted

marketing specific to your taste, and support loyalty programs designed by iSkip to which you

have agreed to participate in.

This message/document has been classified as “Confidential”

We also share with restaurants summary reports of feedback from diners. If you provide

comments about a restaurant through our Services, these comments may be shared with or may

be accessible by that restaurant, and the restaurant may respond to you. We will not tie your

comments with other information that can identify you directly, but a restaurant may be able to

tell who you are from your comments, particularly if you give your name in the comments or

provide contact information, such as an email address.

For more information, please feel free to contact the restaurants at which you dine or book, or

iSkip as detailed in the Contact Us section below.

2.2 Information Shared with Gift Card Merchants

If you choose to purchase a gift card through our services, we may share some information with

the gift card issuer such as your name, recipient’s name, and the amount of the gift card.

2.3 Payment Information

To use certain Services (such as to make reservations at certain restaurants; to make payments to

certain restaurants or to secure reservations; and to purchase tickets to events, or other products

or services), we require credit or debit card account information. When you submit your credit or

debit card account information through our Services, we share that information with restaurants,

third-party payment processors, and other third-party service providers (including, but not

limited to, vendors who provide fraud detection services to us and other third parties) to the

extent necessary to meet our contractual obligations to you (e.g., to secure your reservation or

make a payment to a restaurant where required), to meet our legitimate interests in preventing

fraud and other misuse of our platforms, or with your consent where this is required by law. In

particular:

· When you use a credit or debit card to secure a reservation through our Services, we

provide your credit or debit card account information (including card number and expiration

date, but excluding the CVV number) to our third-party payment service providers and the

applicable restaurant.

· When you initially provide your credit or debit card account information through our

Services in order to use our restaurant payment services, we provide your credit or debit card

account information to our third-party payment service providers. As explained in the iSkip

Terms and Conditions, these third parties may store your credit or debit card account

information so you can use our restaurant payment services through our Services in the future, to

the extent permitted by local law.

This message/document has been classified as “Confidential”

For information about the security of your credit or debit card account information, see the

Security of Your Information section below.

2.4 Information Shared Socially

iSkip may allow you to connect and share your actions, comments, content, and information

publicly or with friends. Our Sites may also allow you to connect with us on, share on, and use

third-party platforms, including those on which iSkip has a presence. Please be mindful of your

personal privacy needs and the privacy needs of others as you choose whom to connect with and

what to share and make public. We cannot control the privacy or security of information you

choose to make public or share with others. For more emphasis, iSkip does not control the

privacy practices of third-party platforms. Please be advised to contact those sites and services

directly to learn about their privacy practices. Also take note of the following:

· Third-party services or applications you use to log into your account – certain

information is shared (such as name and email address) if your use a third-party service or

application (e.g., Gmail, Facebook, etc)

· Reviews you submit – had you chosen to provide a restaurant review, we are fully

authorized to publish it on all our Services under the screenname you provided to aggregate

your review with other reviews, and to share it with restaurants.

· Messages and other communications you submit to restaurants - If you submit a

message or other communication to a restaurant through our Services, you authorize us to share

your message or communications with the relevant restaurant, and you authorize the restaurant

to respond to you through our Services.

· In the event of a corporate transaction - We may disclose or transfer your information to

a third party if we sell, transfer, divest, or disclose all or a portion of our business or assets to

another company in connection with or during negotiations of any merger, financing, acquisition,

bankruptcy, dissolution, transaction, or proceeding.

· To comply with and as required by law - We may disclose your personal information to

government authorities or other relevant third parties in order to comply with applicable legal

requirements, judicial proceedings, court orders, legal processes, or lawful requests from

governmental authorities.

· Sharing with Our Business Partners - We share your information with other third-party

business partners for their own marketing purposes. These third parties include online advertisers

or ad tech companies, who may provide you with targeted advertising and marketing

This message/document has been classified as “Confidential”

communications, where permitted under law. The information we share includes information

collected through your use of our Services (e.g., bookings, reservations, or other purchases) and

information we collect about you through the use of cookies and similar technologies (e.g.,

information about the websites you visit; information about your searches, including the cities or

neighborhoods you search in, the type of restaurant or cuisine you searched for, price range,

intended dining date, and the number of diners).

· Sharing with Our Group Companies - We share your information with our affiliates and

subsidiaries in Saudi Arabia and worldwide, as well as with our parent corporation, Booking

Holdings Inc., and its other subsidiaries (collectively, as also defined earlier in this Privacy Policy,

“our group companies”). We may share your information with our group companies for the

following reasons:

· Provide you with integrated services (including to administer and manage reservations,

purchases, services, and payments across our affiliated platforms).

· Provide personalized offers or send you marketing communications with your consent or as

otherwise permitted by applicable law.

· Enable “single sign-on”, i.e., allowing you to log into a shared account for multiple Booking

Holdings Inc. brands using a single set of log-in credentials, which allows us to, for example,

show your purchases and bookings that were made through the websites, applications, and

services of our group companies on your account page, and allows our group companies to

show information in your respective account(s) with them.

· Provide customer support services.

· Detect, prevent, and investigate fraud and misuse of our services, other illegal activities, and

data breaches.

· Analyze how users use our independent and affiliated platforms, so that we may improve

existing products and services and develop new features, products, and services that may be of

interest to our users.

· Ensure compliance with applicable law.

· Sharing with Other Service Providers - We share information with third-party vendors,

consultants, and other service providers who perform services or functions on our behalf (e.g.,

hosting or operating our Services, data collection, reporting, ad response measurement, site

analytics, data analysis, delivering marketing messages and advertisements, processing credit

This message/document has been classified as “Confidential”

card payments, and providing fraud detection services). We do not authorize these third parties

to use or disclose your information for purposes other than what has been provided. We require

these third parties to maintain and implement security measures to protect your information

from unauthorized access or processing.

To learn more about your choices related to how we share your information with our group

companies, please see the Your Choices and Rights section below.

3. Storage and Protection of you Information

iSkip maintains commercially-reasonable technical, administrative, and physical security

measures designed to protect your information from loss, misuse, unauthorized access,

disclosure, alteration, and destruction.

Cryptographic protocols are used to protect your financial information when your credit or debit

card is being transmitted to or through our services. iSkip does not itself store your credit or

debit card account information, and we do not have direct control over or responsibility for your

credit or debit card account information. Third party payment processors are used in such

situations to control your credit card information and they are required to keep your information

secure and confidential.

However, we cannot guarantee that transmissions of your credit or debit card account

information or your other information will always be secure or that unauthorized third parties will

never be able to defeat the security measures taken by iSkip or our third-party service providers

except to the extent that liability cannot be excluded or limited due to applicable law. iSkip

assumes no liability or responsibility for disclosure of your information due to errors in

transmission, unauthorized third-party access, or other causes beyond our control.

Please be mindful that you play a key role in keeping your information secure, so we request that

you refrain from sharing your user name, password, or other security information for your iSkip

account with anyone. If we receive instructions using your user name and password, we will

assume you have authorized the instructions. If you have reason to believe that your interaction

with us is no longer secure (e.g., if you feel that the security of any account you might have with

us has been compromised), please contact us immediately as detailed in the How to Contact Us

section below.

4. Cookies

When you use or visit the Services, we collect information about your usage and activity using

cookies, web beacons, and other technologies. Third parties may also view, edit, or set their own

This message/document has been classified as “Confidential”

cookies. We and our third-party service providers, our group companies, and other business

partners may also place web beacons for these third parties. The use of these technologies by

third parties is subject to their own privacy policies and is not covered by this Policy, except as

required by law.

5. Your Rights and Choices

5.1 Email – you may click on the “unsubscribe” link if you feel the need to no longer receive

marketing and promotional emails from iSkip in future proceedings. This link will be located

in the same marketing/promotional email mentioned above. It can also be deactivated using

your iSkip account settings. However, even if you opt out of such services, we will still send

you service-related communications, such as confirmations of any future reservations you

make.

5.2 Push Notifications (on Mobile Devices) -This can be disabled using the settings on your

mobile device.

5.3 Text Messages – You may reply with “STOP” (or as otherwise instructed) if you no longer

require text messages to be sent (for reservation reminders and such). This can also be disabled

from your iSkip account settings.

5.4 Cookies and Interest-Based Advertising - To exercise choices regarding cookies set through

our website, as well as other types of online tracking and internet advertising, see our Cookies

and Interest-Based Advertising Policy for more details.

5.5 Application Location - As highlighted in more detail in Section 1 “Information We Collect and

Use” above, we collect information about your location if you enable location services through

the settings on your mobile device, or with your consent, as may be required by law. If you wish

to disable this service, you may do so by turning off location services on your mobile device.

However, this could affect the delivery of certain features of iSkip services. For more information

in terms of privacy settings, iSkip advises you to contact your device manufacturer.

5.6 Choices about the collection of information from restaurant point of sale terminals - If you

make a booking with certain participating restaurants through our Services, we will receive

information about your dining experience from the restaurant's point of sale terminal. You can

opt-out of us receiving this information via the booking confirmation page or your iSkip account

preferences.

5.7 Customized Dining Experiences - As described in the “Sharing with Restaurants and

Restaurant Affiliates” section of the privacy policy, sharing your information with restaurants

This message/document has been classified as “Confidential”

upon booking ensures that it is recorded. These restaurants may share your dining information

with their restaurant affiliates or broader restaurant groups or through the iSkip platform for the

purpose of improving and personalizing your dining experience on future visits if you book at a

restaurant affiliate or within the same restaurant group. If you do not require this service, you

may opt-out by adjusting your iSkip account preferences. You may also send such opt-out

requests to us as detailed in the “How to Contact Us” section below.

5.8 Access and Correction of Your Information - If you have created an online account with us

and would like to update the information you have provided to us, you can access your account

to view and update your information. You may also contact us as described in the “How to

5.9 Legal Rights - Where applicable under local law, you may have the following rights regarding

your personal information: the right to access personal information we hold, and in some

situations, the right to have that personal information corrected or updated, erased, restricted, or

delivered to you or a third party in a usable electronic format (the right to data portability).

Where applicable, you may also object to how we use your personal information if the legal basis

for processing that information is our legitimate interest. Where we are using your personal

information on the basis of your consent, and where applicable under local law, you have the

right to withdraw that consent at any time. Additionally, where you have granted consent to

receive direct marketing communications from us, and where applicable under local law, you

may withdraw that consent at any time.

If you wish to exercise legal rights you may have under applicable law, please submit your

request to App@iSkip.sa so that we can better process your request. Please provide the email

you use to log into your iSkip account. If you do not have an iSkip account, then please provide

the email you used to make requests or to use our Services.

Where applicable, you may also have the right to register a complaint to your local data

protection authority.

6. International Transfers of Information

Information about you may be transferred to, or accessed by, entities located around the world

as described in this Policy. Some of these entities may be located in countries that do not

provide an equivalent level of protection as your home country. Where required, iSkip has

implemented appropriate cross-border transfer solutions to provide adequate protection for

This message/document has been classified as “Confidential”

transfers of certain information. By using our Sites, and providing us information about you, you

consent to the international transfer of information about you to the above parties.

7. Links to Other Websites

Our Sites may contain links to other websites or services that are not owned or controlled by

iSkip, including links to websites of restaurants and our advertisers, sponsors, and partners. This

Policy only applies to information collected by our Sites. We have no control over these third

party websites, and your use of third party websites and features are subject to privacy policies

posted on those websites. We are not responsible or liable for the privacy or business practices

of any third party websites linked to our Sites. Your use of third parties' websites linked to our

Sites is at your own risk, so we encourage you to read the privacy policies of any linked third

party websites when you leave one of our Sites.

8. Changes to this Policy

iSkip reserves the right to modify, change or amend the Privacy Policy at our own discretion and

from time to time. Such modification, change, or amendment shall be communicated via the

application, and as required, obtaining your consent. Any updates will become effective

immediately after posting the updates to this Privacy Policy and applied to all information

collected about you, or where required, upon your consent. You agree that you will review this

changed accordingly. You are free to decide whether or not to accept a modified version of this

Policy, but accepting this Policy, as modified, is required for you to continue using our Sites. If

you do not agree to the terms of this Policy or any modified version of this Policy, your sole

recourse is to terminate your use of our Sites.

If we make any changes to this Policy that materially impacts previously collected information

about you, we will obtain your prior consent.

9. How to Contact Us

If you have any questions about this Policy or the way in which your personal information has

been used, please contact us by email at App@iSkip.sa .