Data Protection &
Privacy Framework

1. Introduction

AZS Solutions ("the Firm", "we", "our", or "us") is committed to protecting the privacy and security of your corporate and personal data. As a premier financial and corporate advisory firm operating within Pakistan, we adhere strictly to confidentiality protocols and regulatory standards. This Privacy Policy outlines how we collect, process, and safeguard your information when you engage with our services or utilize our secure Client Portal.

2. Information We Collect

To provide institutional-grade advisory, we may collect the following categories of information:

• Corporate Identification: Company names, incorporation certificates, NTN/STRN details, and registered addresses.
• Personal Data of Officers: Names, CNIC/Passport details, emails, and phone numbers of directors, shareholders, and authorized representatives.
• Financial Data: Bank statements, general ledgers, payroll records, and tax filings required for audit, taxation, and reporting services.
• Technical Data: IP addresses, browser types, and access logs when utilizing the AZS Command Center or Client Portal to ensure security.

3. How We Use Your Data

We do not sell, rent, or trade your data. Your information is used strictly for the following purposes:

• Executing statutory filings with the Securities and Exchange Commission of Pakistan (SECP).
• Preparing and submitting tax returns to the Federal Board of Revenue (FBR) and Provincial Revenue Authorities (PRA, SRB, KPRA).
• Provisioning and maintaining secure access to your dedicated Client Portal and document repository.
• Communicating critical regulatory updates, deadlines, and advisory notices.

4. The Client Portal & Data Security

Data transferred through the AZS Solutions website and stored within the Client Portal is protected by enterprise-grade 256-bit SSL encryption. We employ strict access controls, ensuring that your corporate dossiers and financial reports are accessible only by you and the authorized AZS Partners managing your account.

While we utilize advanced server infrastructure to protect against unauthorized access, alteration, or destruction of your data, no internet transmission is entirely infallible. Clients are responsible for maintaining the confidentiality of their portal passphrases.

5. Disclosure to Third Parties

AZS Solutions honors the doctrine of client-advisor privilege. We will only disclose your information to third parties under the following circumstances:

• When explicitly mandated by law or a valid order from a regulatory authority or court of jurisdiction.
• When transmitting necessary data to government portals (e.g., FBR Iris, SECP eServices) on your behalf as your appointed representatives.

6. Data Retention & Your Rights

We retain your corporate and financial data only as long as necessary to fulfill the operational and legal obligations of our engagement. Under applicable data protection frameworks, you maintain the right to:

• Request a comprehensive export of your data held in our systems.
• Request the correction of any inaccurate or incomplete corporate records.
• Request the secure deletion of your files upon the termination of our advisory engagement (subject to statutory retention periods mandated by Pakistani law).

7. Contact the Compliance Officer

If you have any questions regarding this Privacy Policy or require assistance with your data rights, please contact our administrative team.