Privacy Policy

ORVISTA is designed around limited data collection and purpose-bound information use: reviewing executive access requests, managing work correspondence, and preparing written decision context engagements. Submitted information is handled within disciplined boundaries aligned with confidentiality, necessity, and the nature of written analytical work.

Last updated: 20 May 2026ORVISTA operates through the registered Jordanian legal entity identified on the Legal Entity page.

Purpose-limited use

Information is handled only for request review, work correspondence, and agreed written work.

Minimal collection

ORVISTA asks only for information needed to review the matter and define the appropriate scope.

Confidential handling

Submitted materials, correspondence, and outputs are handled within clear, disciplined confidentiality boundaries.

Limited retention

Information is retained only for as long as necessary for engagement, legal, or record-keeping needs.

Scope of this policy

This Privacy Policy applies to information submitted through the ORVISTA website, the Request Executive Access form, official email correspondence, supporting materials or uploaded files, engagement review communications, and agreed written decision context engagements. This policy does not replace any specific confidentiality, legal, or contractual terms that may apply to an agreed client engagement. Where a client agreement is entered into, that agreement may define additional obligations for confidentiality, handling, retention, and delivery.

Information ORVISTA may collect

ORVISTA may collect or receive information voluntarily submitted by a client, prospective client, or authorized representative. This may include full name, leadership role or title, entity or organization name, official email address, requested brief format, description of the decision matter or strategic context, matter timeframe, supporting written materials, uploaded files, clarification messages, and work correspondence. ORVISTA may also receive basic technical information generated through normal website or email infrastructure, such as server logs, transmission records, or security-related technical data.

Purpose of collection and use

Information is used only for defined purposes connected to ORVISTA’s work. These purposes include reviewing executive access requests, assessing whether a matter fits ORVISTA’s written analytical scope, determining the appropriate engagement format, communicating with the requester, clarifying scope and sensitivity, preparing agreed written decision context outputs, managing work records, and complying with applicable legal or contractual obligations. ORVISTA does not use submitted information for unrelated commercial purposes, public promotion, advertising targeting, or resale.

Request Executive Access form

Information submitted through the Request Executive Access form is used for initial assessment, engagement review, and written communication regarding the request. The selected brief format is treated only as an initial review indicator. After reviewing the submitted matter, ORVISTA may determine that a different written engagement format or scope is more appropriate. At the initial request stage, clients should provide a clear but proportionate description. Highly sensitive information should be limited unless necessary for review or requested later under an agreed engagement structure.

Supporting materials and uploaded files

Supporting materials are used only to understand the matter, assess scope alignment, clarify context, and support the preparation of agreed written work. They may include background information, timelines, prior notes, internal briefings, or other documents relevant to the matter under review. Uploaded files may contain information beyond what is requested in the form. Clients should review materials before submission and avoid including unnecessary personal data, excessive internal information, or unrelated sensitive content. Where supporting materials include information about third parties, the submitting party should ensure that it has the appropriate authority or basis to share such information with ORVISTA.

Website technical data, cookies, and analytics

ORVISTA does not currently use website cookies for advertising targeting or behavioral marketing, and does not currently rely on public-facing website analytics as a core part of its engagement model. Basic technical logs may still be generated by hosting, security, email, or form infrastructure as part of normal website operation. Such data may include IP address, browser type, device information, date and time of access, pages requested, or error logs. This information is used only for website functionality, security, troubleshooting, maintenance, or operational integrity. If ORVISTA later introduces analytics, marketing cookies, or additional tracking technologies, this policy may be updated accordingly.

Internal technology support

ORVISTA may use selected digital tools, including AI-assisted tools where appropriate, to support internal structuring, drafting clarity, synthesis, and preparation of written decision context. These tools are used under direct oversight and do not replace human review, analytical judgment, or ORVISTA’s responsibility for the final written output. Where appropriate, ORVISTA may minimize, generalize, or remove client-identifying details before using such tools for internal processing. ORVISTA does not use client materials for external model training. Where third-party tools are used, ORVISTA applies available account, workspace, or data-control settings intended to restrict such use where available.

Third-party service providers

ORVISTA may use selected technical service providers to operate the website, receive and transmit email, process forms, maintain communications, support security, or assist internal work. These providers process information only as necessary to provide the relevant service. ORVISTA does not sell personal information and does not share client materials with third parties for advertising, resale, or unrelated commercial use. Depending on the nature of some global providers, information may pass through or be processed using technical infrastructure outside Jordan. When selecting or changing providers, ORVISTA considers confidentiality, necessity, security controls, and applicable legal requirements.

Legal basis and purpose

ORVISTA collects and processes information where it is necessary to review a request, respond to work correspondence, assess a possible engagement, prepare agreed written work, comply with legal or contractual obligations, or protect legitimate work-related interests. By submitting information through the website or official correspondence, the submitting party confirms that the information is provided for internal review and communication related to ORVISTA’s written decision context services.

Confidentiality

Information submitted to ORVISTA is treated as confidential within the defined scope of the request or engagement. Confidentiality obligations may be further defined in a separate client agreement where an engagement proceeds. ORVISTA does not publicly disclose client matters, submitted materials, or engagement-related information unless authorized, legally required, or necessary to protect legitimate legal or work-related interests.

Retention

Information is retained only for as long as necessary for the purpose for which it was submitted. This may include the period required to review an executive access request, manage correspondence, assess scope and engagement suitability, prepare agreed written work, maintain work records, comply with legal, contractual, confidentiality, or accounting obligations, or protect legitimate work-related interests. Requests that do not proceed to engagement may be retained for a necessary period for review, record management, and work-related protection, then deleted or archived according to internal practices.

Access, correction, and deletion requests

A person who has submitted personal information may contact ORVISTA to request access, correction, deletion, or limitation of use of their personal information, subject to applicable legal, contractual, confidentiality, and record-keeping requirements. ORVISTA may need to verify the requester’s identity or authority before acting on such requests.

Information security

ORVISTA applies reasonable administrative, technical, and organizational safeguards designed to protect submitted information against unauthorized access, misuse, loss, or unnecessary disclosure. No method of electronic transmission or storage is completely risk-free. ORVISTA therefore encourages clients not to submit excessive or unnecessary sensitive materials at the initial request stage.

Disclosure where required

ORVISTA may disclose information where required by law, court order, competent authority, contractual obligation, or where necessary to protect legitimate legal or work-related interests. Any such disclosure will be limited to what is necessary in the circumstances.

Policy updates

This Privacy Policy may be updated from time to time to reflect changes in ORVISTA’s website, engagement model, technical infrastructure, service providers, legal requirements, or internal handling practices. The latest update date will be shown at the top of this page.

Privacy contact

For privacy-related inquiries, correction or deletion requests, or questions regarding information handling: contact@orvista.co