Published:

National Guard’s portal (Sang.gov.sa) prioritizes user privacy above all else. In the interest of safeguarding users’ data and information, the Ministry of National Guard is committed to maintaining the confidentiality and privacy of this data and utilizing it to enhance the quality of services offered, in compliance with the terms and conditions applicable in Saudi Arabia. By using the Ministry's website, platforms, and applications, users agree to the privacy policy. Upon this agreement, the Ministry will collect only the essential personal data provided by the user, strictly for the purposes outlined in the policy. Personal data refers to any information, regardless of its source or form, that may lead to the identification of an individual user, directly or indirectly. This includes, but is not limited to, names, personal identification numbers, addresses, contact numbers, license numbers, personal property, bank account numbers, credit card numbers, user photos, emails, and other types of information of a personal nature. Sensitive data refers to any personal information related to an individual's racial or ethnic origin, their religious, ideological, or political beliefs, along with security information, criminal records, biometric data, genetic data, health data, and data indicating that an individual is of unknown parentage.

Ownership of Privacy Policy

The Privacy Policy shall be owned by the Data Management Office of the Ministry of National Guard and updated versions thereof shall be issued.

Collected Data and Purpose of Collection

1.Personal Information

Below are examples of the main types of personal data collected and processed: 

  • (Names, ID numbers, date of birth, addresses, contact numbers, user photos). 
  • Credit data (bank account details for final acceptance of job applicants). 
  • Information shared during our interactions with you, including support requests and reports provided by you. 
  • Sensitive data and security survey information from security and judicial authorities concerning job applicants and job competitions within the Ministry's authorities. 
  • Your explicit consent to processing sensitive data is a prerequisite for applying for the job.

2.Purpose of Collecting Personal Information

Personal data is collected and processed for several reasons, including but not limited to: 

  • Satisfying the legal and regulatory requirements. 
  • Selection Process of job applicants, training positions, or academic placements. 
  • Ensuring all necessary data is collected to provide electronic services and transactions. 
  • Understanding the needs of visitors to enhance products and services. 
  • Enabling users to access government services and conduct transactions. 
  • Analyzing data and producing reports that serve necessary business requirements. For example, statistical reports. 
  • Resolving and addressing queries or complaints you may have and improving visitor experience across all Ministry communication channels.

Data Collection Methods

  • Personal data entered by the user, which is required for registering in the channels provided by the Ministry. 
  • Personal data collected indirectly through cookies when visiting the site (cookies).

Use of Personal Data

The personal data collected from the user and is essential to achieve the specific purposes outlined in the policy or the legal requirements specified by Personal Data Protection Law and its implementing regulations.

Storage and destruction of personal data

Personal data is stored within the Kingdom of Saudi Arabia on servers managed by the corporate department of IT and Cyber Security at the Ministry of National Guard. These servers are protected using the best technology and methods in accordance with the policies and controls of the National Cyber Security Authority, as well as international standards, to prevent unauthorized access and minimize cyber risks. The data will be securely destroyed once the purpose for its collection is fulfilled, using methods that ensure it cannot be retrieved or accessed again, in accordance with the Ministry of National Guard's policies.

Legal Basis for Collecting and Processing of Personal Data within the Ministry of National Guard

MNGHA collects and processes personal data (optionally) based on the following legal grounds:

  1. Explicit consent of the data subject or their legal guardian. 
  2. In fulfillment of a contractual obligation (including employment contracts, projects, services, etc...) 
  3. In fulfillment of a statutory obligation (including all military and civilian service laws, as well as labor laws). 
  4. Protection of vital interests (includes all aspects relevant to the health and life of individuals). 
  5. Achieving the public interest (including all aspects relevant to the public interest). 
  6. Achieving legitimate interests or objectives (including all interests and objectives of the Ministry of National Guard). 

The collection and processing will be carried out in accordance with the Personal Data Protection Policy of the Ministry of National Guard and the Personal Data Protection Law promulgated by Royal Decree No. (M/19) dated 09/02/1443H. The user can revoke their consent to collecting and processing personal data at any time unless there is another legal basis. in this case, contact the Data Management Office of the Ministry of National Guard at: dmo@sang.gov.sa

Rights of the Data Subject in Relation to the Processing of Personal Data

Under the Personal Data Protection Policy issued by the Data Management Office of the Ministry, the personal data subject has the following rights, that are primarily contingent upon the purpose for which the personal data is collected and processed: 

  • Right to know: The data subject has the right to be informed of the purpose of collecting and processing their data and the legal basis considered for this purpose, the content of the data to be processed, the method of collection, the means of its storage, and the parties to whom the data will be disclosed (the privacy policy is one of the possible means by which the data subject can exercise this right). 
  • Right to access personal data: The data subject has the right to request a copy of their personal data through the available channels to access the data or through the e-mail address shown in the contact details below. A response will be provided within (5) five business days. 
  • The right to correct your personal data: The data subject has the right to request corrections to their personal data if deemed inaccurate, incorrect, or incomplete. This can be done through the official channels provided by the Ministry or via the email specified in the contact information. 
  • A response will be provided within (5) five business days. 
  • Right to Destroy: The data subject has the right to request their data, which the original purpose for collecting it has ended, be destroyed under certain circumstances, provided it does not conflict with established legal principles, legitimate interests, and after the expiry of the regulatory and legal period for retaining the data. 
  • Right to object: The data subject has the right to object to (the collection, processing, storage, sharing or disclosure) of their personal data without their explicit consent, especially if the processing is for direct marketing purposes. 
  • Right to restrict processing: The data subject has the right to request limitation of processing of their personal data for one or more purposes. Right to personal data portability: The data subject has the right to request the transfer of their personal data, , which has been processed and collected directly with their explicit consent. This transfer can be made to any entity, subject to a fee determined by the Ministry.

For more details on the processing of your personal data and how to exercise your rights, please refer to the Personal Data Protection Law issued by Royal Decree. No. (M/19) dated 09/02/1443H, as well as the Personal Data Protection Policy issued by the Data Management Office within the Ministry. You may also contact the Data Management Office of the Ministry of National Guard for further assistance

Sharing Personal Data

The user's personal data shall not be disclosed to other parties unless the user's consent is obtained or there is a legal justification, with the exception of the excluded parties and requests based on High Orders.

External links

This policy applies to the (Sang.gov.sa) portal and all platforms providing services to the Ministry of National Guard. Suppose it moves to another website or platform through (www.sang.gov.sa). In that case, the Ministry is not responsible for any content on those websites, nor for any person's use or proper functioning of those websites, or for any issues that may arise from their use, and the user is responsible for all their actions while using any of the websites they visit through those links on this website. They shall read the privacy policy of that website or platform to determine the information security practices and privacy policy currently in place.

Exercising the Rights of The Personal Data Subject

The subject of personal data has the right to request access/ rectification/ destruction of their data by contacting the Data Management Office in the Ministry of National Guard e-mail: dmo@sang.gov.sa

Personal Data Protection Officer

Name: Data Management Office in the Ministry of National Guard Email: dmo@sang.gov.sa

For Inquiries, Complaints or Objections

In the event of any complaints or inquiries about the privacy policy or requesting a right of the personal data subject, the Data Management Office and the Personal Data Protection Officer of the Ministry of National Guard can be contacted at: dmo@sang.gov.sa

Privacy Policy Updates

The privacy policy was last updated on 01/07/1446 AH , and you can see the record of updates below:

Description Date Version
The first version prepared by the Data Management Office 13/07/1443 AH 1,0
The second version after reviewing the relevant authorities 10/08/1443 AH 1.1
The third version after the update to align with the amendments to the Personal Data Protection Law 02/08/1445 AH 1.2
The fourth version, after aligning with the manual issued by (SDAIA) 01/07/1446 AH 2.0