The website www.sahareye.com is operated by the company KAM TRADING SARL , a limited liability company governed by Moroccan law, registered in the Casablanca Trade Register under number ICE: 002762993000046. For any request or information, you can contact us at 05 22 33 47 77 .

1. Sahareye's Commitment

At Sahareye, the security of your personal data and payment information is a top priority. We implement a multi-layered approach to protect our website, databases, and all customer interactions, in accordance with the legal requirements of Morocco, the GCC countries, and international cybersecurity standards.

Our website is developed on the Shopify platform, recognized worldwide for its robust security, and was designed by our professional partner Evrim Agency, an agency specializing in e-commerce and secure technologies.

2. Secure Shopify Infrastructure

As a merchant operating through Shopify, we benefit from the following security measures directly integrated:

• Secure hosting with ISO/IEC 27001 certified data centers
• Site-wide SSL (HTTPS) encryption, protecting all data transmitted between your browser and our server
• Automatic platform security updates
• PCI DSS (Payment Card Industry Data Security Standards) Compliance
  

3. Collaboration with Evrim Agency

Our website was developed by Evrim Agency, an e-commerce web agency specializing in Shopify security. The agency incorporated best practices in terms of performance, payment security, and integration with reliable third-party systems.

Evrim Agency also provides regular maintenance, including:

• Technical vulnerability analysis
• Periodic security audit of custom code
• Configuring administrator permissions and access
  

4. Use of secure analytical tools: Triple Whale

We use Triple Whale, an advanced analytics solution, to track our store's business performance. All data is processed in a secure environment and hosted on servers that comply with applicable security standards.

No payment or personal data is shared with Triple Whale, except for statistical and anonymized purposes.

5. Our multi-layered approach to security

To ensure maximum security at every level, we have adopted a layered security strategy, combining tools, technologies and human procedures:

5.1 Web application firewall (WAF)

We have implemented a WAF (Web Application Firewall) to filter incoming traffic and prevent any malicious attempts (SQL injections, cross-site scripting, DDoS attacks, etc.). This system detects and blocks abnormal behavior in real time.

5.2 Strong authentication

• Administrator access via two-factor authentication (2FA)
• Complex passwords with regular expiration
• IP restrictions on connections to sensitive interfaces

5.3 Active monitoring and alerts

• Automated log analysis to identify suspicious behavior
• Real-time alerts in case of unauthorized access attempts
• 24/7 monitoring system via Shopify and security partners

5.4 Regular Vulnerability Scans

• Performing vulnerability scans to identify potentially exploitable vulnerabilities
• Security updates applied immediately
• Periodic intrusion tests (pentesting) by specialized service providers

5.5 Automatic Backups

• Daily backups of critical databases
• Rapid restoration possible in the event of a technical incident or attack
• Storage of backups on independent secure servers

5.6 Limitation of access

• Principle of least privilege applied to all employees and contractors
• Access granted only to the resources needed by each role
• Register and monitor administrative connections

6. Payment security

Payments on Sahareye.com are processed through secure gateways such as Shopify Payments, PayPal, or Stripe. These solutions are PCI DSS certified and use advanced encryption to ensure the security of your transactions.

No credit card number is ever stored on our servers.

7. Protection of your personal data

We protect all personal data you entrust to us (name, email, address, telephone number) through:

• Data encryption systems at rest and in transit
• Restricted access to databases containing sensitive information
• A privacy policy in accordance with law 09-08 in Morocco and international standards (GDPR, GCC Data Laws)
  

8. Training and awareness

The Sahareye team and our partners received cybersecurity training, including:

• Best practices for password management
• Recognizing phishing attempts
• Data Breach Response
  

9. Reporting a security incident

If you suspect a security breach on our site or in the use of your data, we encourage you to contact us immediately:

Address: 36, Rue Georges Sand, Loubane Residence, Casablanca, Morocco
Email: hello@sahareye.com

We will promptly investigate and take all necessary steps to secure the affected systems.

10. Update of our security policy

This page may be updated at any time to reflect changes to our infrastructure or new legal requirements. The current version will always be available on the Sahareye.com website.