Private, approved access only
The app is for Be Group employees and approved operational workers. Every user needs an active, management-approved account.
Be Group App privacy
Be Group App Privacy Policy
This policy explains what the Be Group App collects, why, how it is used, who can access it internally, and the service providers that help operate it. The Be Group App is a private, internal app for Be Group employees and approved workers — not a public app for visitors, clients, or customers.
At a glance
The key points
Work data, not advertising
We process data to run attendance, tasks, events, requests, and administration — never for advertising or marketing.
We never sell your data
We do not sell personal data and do not share it for advertising or commercial sale.
You can delete your account
You can delete your account in the app or request deletion through this website.
Who can use the app
An internal, approval-based app
The Be Group App is private and is not open to the public.
- 1
It is for employees working within Be Group and its companies, and may also be used by approved operational workers needed by Be 2 Z according to business need.
- 2
Every user needs an active, approved account; there is no open public sign-up.
- 3
Account creation happens by submitting a join request inside the app.
- 4
Management reviews and approves the join request before the account becomes active.
Data we collect
What we collect
We collect the data needed to run the work: attendance, tasks, events, requests, and administration.
Account and join-request details
Full name, date of birth, residential address, gender, profile photo, phone number, email address, Telegram username, sign-in credentials needed to access the account, the company you join, and your specialization or role. National ID card / identity document images are required from all users to verify your legal identity and match it with employment and contract records.
Location data for attendance
Location data is used for attendance check-in and check-out, to verify presence around the company or work location. Wi-Fi information may be used as a supporting signal to help confirm presence at the company. Wi-Fi is a supporting signal, not a replacement for attendance and location verification, and these signals are used for operational attendance only, never for advertising.
Attachments and documents
Files you upload — photos, PDF files, invoices, task and event attachments, and finance or administrative attachments — along with stored event photos, task photos and files, finance attachments, invoices, and supporting operational documents.
Operational work data
Work data such as tasks, task comments, task participants, events, leave requests, join requests, approvals, attendance-related records, and work-related financial and administrative records.
Mr. Be assistant data
When you use the internal Mr. Be assistant, some task, finance, event, invoice (OCR), or operational data may be processed to answer your request. Mr. Be reads and uses data only according to your permissions and only as needed.
Limited technical data
We may process limited technical data such as device type, operating system, app version, and notification tokens, with basic technical logs needed to deliver notifications and protect accounts.
How we use data
Why we use your data
We use data to manage accounts, run the daily work, and protect the service — not for advertising.
- Create, review, and approve accounts and join requests, and manage active accounts.
- Apply role-based permissions and control who can access which data.
- Record attendance through location and supporting Wi-Fi signals.
- Run daily operations: tasks, events, requests, approvals, and work-related financial and administrative records.
- Send operational notifications and deliver verification (OTP) codes.
- Operate the Mr. Be assistant and document-reading (OCR) features according to your permissions.
- Protect accounts, maintain reliability, and respond to support requests.
Notifications & verification
Notifications and verification codes
We use trusted services to deliver operational notifications and verification codes only.
Operational notifications
We may use trusted service providers to send notifications related to your workflow, such as task updates, approvals, attendance, and administrative alerts. We do not send marketing notifications.
Verification codes
We may use trusted verification service providers to send verification codes or security messages related to sign-in or account protection.
Mr. Be assistant & AI
How Mr. Be works
Mr. Be is an internal assistant for Be Group that works according to your permissions.
- Mr. Be is an internal assistant for Be Group. It reads and uses data only according to your permissions and only as needed to answer a request or support a requested action.
- The app may use artificial-intelligence technologies and trusted processing providers to support features such as the internal assistant, summarizing information, reading documents, and analyzing operational data when needed. Data is processed within the scope of your permissions and the required functional purpose, and these features never give you access to data you are not authorized to see.
- We do not use Mr. Be conversations or related data to train public AI models. Some data may be processed, and limited operational records may be kept where needed to provide the feature or improve the assistant experience inside the company, according to permissions and functional purpose.
Internal access & service providers
Who can access data
Internal access follows role permissions and business need, and some data is processed by trusted service providers to operate, host, secure, and support the app and website.
Authorized internal access
- You can access data according to your role and permissions.
- Direct managers and the Group Manager may view employee-related data as needed for work management.
- Authorized internal departments and roles may access data according to permissions and operational need.
Service providers
- Hosting and cloud infrastructure services.
- Verification and account-security services.
- Notification and operational messaging services.
- File and attachment storage services.
- Artificial-intelligence and document-processing services.
- Operational protection and monitoring services.
We work with trusted service providers to help us operate the app, protect accounts, store data, send notifications, process files, and provide some AI features. We give these providers only the data needed to deliver the requested service, and we minimize data as much as possible according to purpose and permissions.
We do not sell user data or share it for advertising or commercial sale. Some data may be processed by trusted service providers to operate, host, secure, and support the app and website, including verification, notifications, and AI features.
Data may be disclosed under Iraqi law, applicable legal obligations, or valid court orders.
Security & storage
How we protect data
We treat data protection seriously through appropriate organizational and technical measures.
- We apply appropriate organizational and technical measures to protect data.
- We use internal access controls and review permissions based on operational need.
- We apply data minimization and work to protect accounts.
- No method of electronic transmission or storage can be guaranteed as completely secure, so we continuously work to improve our protection measures and reduce risk.
Retention & deletion
Keeping and deleting data
You can delete your account through two paths, with limited records retained where there is a legal, financial, security, or administrative reason.
In-app deletion
Open Settings → My Account → Delete Account. In-app deletion starts immediately, subject to limited retention of records that must be kept for legal, financial, security, or administrative reasons.
Website deletion
Use the account deletion page to submit a form-based request, which is reviewed by management and processed within two business days.
Account deletion pageDeleted on deletion
- Your user account, profile information, and personal details.
- Your national ID images and identity documents.
- Personal account records that are no longer needed, subject to legal and administrative limits.
May be retained
- Finance, administrative, and security records.
- Records required by law or needed for compliance, disputes, auditing, or fraud prevention.
- We may retain limited records for as long as necessary for legal, financial, security, or administrative purposes.
We do not set fixed retention periods; any retention is limited to what is necessary for the purposes above.
Your rights & support
Your rights and how to reach us
You can submit requests related to your data through our support channels.
You may request
- Access to your data.
- Correction or update of your data.
- Deletion of your account.
- Questions or objections about data related to you.
Request channels
- Support / WhatsApp: +964 7779988226
- The support page on this website.
- Company administration inside the workplace.
Requests may require identity verification, including verification through your registered phone number.
Children & geographic scope
Age and region
Intended for adults
The app is intended for adults aged 18 and over. It is not directed to children and is only for approved employees and authorized workers.
Iraq and travel access
The app is mainly operated for Be Group work in Iraq. Employees may access it while traveling or working outside Iraq, and data may be processed by cloud service providers outside Iraq depending on their infrastructure.
Updates
Policy updates
We may update this Privacy Policy from time to time. The latest version always applies, and the last-updated date below shows when it was last changed.
Last updated June 17, 2026