Privacy policy

1. Introduction

AMBC, a company established in the Republic of Tunisia, is committed to protecting the privacy and security of personal data. This Privacy Policy describes how AMBC collects, processes, stores, uses, and protects personal data in connection with its website, digital platforms, advisory services, communications, and related business activities.

By accessing or using AMBC’s services, individuals acknowledge that their personal data may be processed in accordance with this Privacy Policy and applicable data protection laws.

AMBC processes personal data in compliance with Tunisian data protection legislation, including Law No. 2004 63 relating to the protection of personal data, and, where applicable, in alignment with international data protection principles.

2. Data Controller

For the purposes of applicable data protection laws, AMBC acts as the data controller in respect of personal data collected through its website, communications, and advisory activities.

AMBC determines the purposes and means of processing such personal data in accordance with applicable legal and regulatory obligations.

3. Categories of Personal Data

AMBC may collect and process personal data including identification information, professional information, contact details, correspondence data, transactional information, technical data relating to website usage, and any other information voluntarily provided in the context of business inquiries or engagements.

Personal data may be collected directly from the individual or indirectly through lawful third party sources in the context of due diligence, compliance, or advisory mandates.

4. Purposes of Processing

Personal data is processed for legitimate business purposes including responding to inquiries, managing client relationships, performing advisory services, complying with legal and regulatory obligations, conducting due diligence and compliance verifications, protecting AMBC’s legal interests, and improving digital services and user experience.

Where required under applicable law, processing shall be based on the individual’s consent, performance of a contract, compliance with a legal obligation, or AMBC’s legitimate interests.

5. Legal and Regulatory Compliance

AMBC may process personal data for purposes related to anti money laundering compliance, sanctions screening, fraud prevention, risk management, regulatory reporting, and other legal obligations imposed under Tunisian or international law.

In such cases, processing may occur without additional consent where permitted by law.

6. Data Sharing and Transfers

Personal data may be shared with employees, affiliates, professional advisers, auditors, technology service providers, or regulatory authorities where necessary for legitimate business operations or legal compliance.

Where personal data is transferred outside the Republic of Tunisia, AMBC shall implement appropriate safeguards to ensure adequate protection consistent with applicable legal requirements.

AMBC does not sell personal data to third parties.

7. Data Retention

Personal data is retained only for as long as necessary to fulfill the purposes for which it was collected, to comply with legal and regulatory obligations, to resolve disputes, and to enforce agreements.

Retention periods are determined based on the nature of the data, the purpose of processing, and applicable legal requirements.

8. Data Security

AMBC implements appropriate technical and organizational measures designed to protect personal data against unauthorized access, accidental loss, destruction, alteration, or disclosure.

While AMBC applies commercially reasonable safeguards, no system can guarantee absolute security.

9. Rights of Data Subjects

Subject to applicable law, individuals may have the right to request access to their personal data, request rectification of inaccurate information, request erasure where legally permissible, object to certain processing activities, or request restriction of processing.

Requests concerning personal data should be submitted in writing to AMBC using the contact details provided below.

AMBC reserves the right to verify the identity of any individual submitting such a request before disclosing information.

10. Cookies and Technical Data

AMBC’s website may collect technical information through cookies or similar technologies for the purpose of improving functionality, analyzing usage patterns, and enhancing user experience.

Users may configure their browser settings to refuse cookies, although certain functionalities of the website may be affected.

11. Third Party Links

AMBC’s website may contain links to third party websites. AMBC does not control and is not responsible for the privacy practices of such external websites. Users are encouraged to review the privacy policies of any third party site accessed.

12. Amendments

AMBC reserves the right to update this Privacy Policy at any time to reflect changes in legal requirements or business practices. Updated versions will be published on the website with a revised effective date.

13. Contact Information

For any questions, requests, or concerns regarding this Privacy Policy or the processing of personal data, individuals may contact

AMBC – AFRICA & MEDITERRANEAN BUSINESS CONSULTING SMLLC.
Republic of Tunisia
Email: contact@ambc.tn