Privacy Policy

Last updated: 30 June 2026

This Privacy Policy explains how GRIT ("we", "us") collects, uses, and protects your personal data, in accordance with Egypt's Personal Data Protection Law No. 151 of 2020 ("PDPL") and its executive regulations.

1. Data Controller

GRIT acts as the data controller for personal data collected through the platform. As required under the PDPL, GRIT is responsible for determining the purposes and means of processing your personal data.

2. Data We Collect

3. How We Use Your Data

4. Legal Basis for Processing

We process your personal data on the basis of: (a) your explicit consent, given at the time of registration and profile completion; (b) the necessity of processing to perform our contract with you (registering you for tournaments, confirming payments); and (c) our legitimate interest in operating and securing the platform, where this does not override your fundamental rights under the PDPL.

5. Data Sharing & Third Parties

We share limited personal data with the following categories of service providers, solely to operate the platform:

We do not sell your personal data. We do not process card or bank account numbers — InstaPay payments are manual bank transfers verified by organizers from screenshots you choose to upload.

6. Data Retention

We retain your personal data for as long as your account is active, and for a reasonable period afterward to comply with legal obligations, resolve disputes, and enforce our agreements. You may request deletion of your account and associated data at any time, subject to Section 7 below.

7. Your Rights Under the PDPL

As a data subject under Egypt's Personal Data Protection Law, you have the right to:

To exercise any of these rights, contact us through the details provided on the platform. We will respond within the timeframe required under the PDPL's executive regulations.

8. Data Security

We apply reasonable technical and organizational measures to protect your personal data against unauthorized access, loss, or misuse, including encrypted transmission, access controls, and secure password/credential handling. No system is completely secure, and we cannot guarantee absolute security of data transmitted to or from the Service.

9. Cookies & Similar Technologies

We use essential cookies and local storage to keep you signed in and remember your preferences. We do not currently use third-party advertising or tracking cookies.

10. Children's Privacy

The Service is not directed at children under 16. We do not knowingly collect personal data from children under 16 without parental or guardian consent. If you believe a child has provided us with personal data without appropriate consent, contact us so we can remove it.

11. International Data Transfers

Some of our service providers (such as cloud storage and SMS delivery) may process data outside Egypt. Where this occurs, we take steps consistent with the PDPL's requirements for cross-border data transfer, including relying on providers with appropriate data protection safeguards.

12. Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be reflected by an updated "Last updated" date at the top of this page.

13. Contact

For privacy-related questions or to exercise your rights under the PDPL, contact our team via the details provided on the GRIT platform.