Privacy Policy

1. Introduction

Misr University for Science & Technology ("MUST", "we", "us", or "the University") is committed to protecting the privacy and security of your personal information. This Privacy Policy explains how we collect, use, store, and protect your data when you use our Postgraduate Admission System ("the System").

By using the System, you consent to the data practices described in this policy.

2. Information We Collect

2.1 Personal Information

When you create an account and submit an application, we collect:

Identity Information:
- Full name (in English and Arabic)
- National ID number (for Egyptian applicants)
- Passport number (for non-Egyptian applicants)
- Date of birth
- Gender
- Nationality
- Place of birth
Contact Information:
- Email address
- Mobile phone number
- WhatsApp number (if provided)
- Residential address
- Permanent address
Academic Information:
- Previous educational qualifications
- Graduation certificates
- Academic transcripts
- Grades and GPA
- University/institution attended
- Graduation year
- Field of study
- Equivalency certificates (if applicable)
Employment Information:
- Current employer (if applicable)
- Job title
- No Objection Certificate (for Faculty of Medicine applicants)
Program Preferences:
- Desired postgraduate program
- Faculty selection
- Study mode preferences

2.2 Documents and Files

We collect and store digital copies of:

National ID or Passport
Graduation certificates
Academic transcripts
Equivalency certificates
No Objection Certificates
Personal photographs
Any other documents required for your specific program

2.3 Authentication Information

When you sign in with Google:

Google account email address
Profile name
Profile picture (optional)
Google account ID (for authentication purposes only)

2.4 Payment Information

Payment transaction IDs
Payment status and timestamps
Payment method used (credit card, bank transfer, etc.)
Note: We do NOT store full credit card numbers or CVV codes. Payment processing is handled securely by our authorized payment gateway providers (QNB Alahli/MPGS, Paymob)

2.5 Technical Information

We automatically collect:

IP address
Browser type and version
Device type (desktop, mobile, tablet)
Operating system
Date and time of access
Pages visited within the System
Application submission timestamps
Login and logout times

3. How We Use Your Information

Purpose	Legal Basis
Process and evaluate your admission application	Legitimate interest in academic admissions
Verify identity and authenticate documents	Contractual necessity and legal compliance
Communicate with you about your application status	Contractual necessity
Process application fee payments	Contractual necessity
Maintain student records for admitted applicants	Legal obligation and legitimate interest
Send important updates and notifications	Legitimate interest
Improve the System and user experience	Legitimate interest
Ensure system security and prevent fraud	Legal obligation and legitimate interest
Comply with Egyptian education regulations	Legal obligation
Generate anonymous statistical reports	Legitimate interest

4. How We Share Your Information

4.1 Within the University

Your information may be shared with:

Admissions committees and faculty members for application evaluation
Academic departments relevant to your chosen program
Finance department for payment verification
Student affairs office (for admitted students)
IT department for technical support and system maintenance

4.2 External Parties

We may share your information with:

Egyptian Government Authorities:
- Ministry of Higher Education
- Supreme Council of Universities
- Cultural Affairs and Missions Sector (for scholarship applicants)
Payment Processors: QNB Alahli, Paymob, and other authorized payment gateways (only transaction data, not full financial details)
Cloud Service Providers: Google Firebase for authentication and data hosting (subject to their privacy policies)
Previous Institutions: For verification of academic credentials (with your consent)
Email Service Providers: For sending notifications and communications

4.3 Legal Requirements

We may disclose your information when required by law or in response to:

Court orders or legal processes
Government or regulatory inquiries
Prevention of fraud or security threats
Protection of our legal rights

Important: We will NEVER sell, rent, or trade your personal information to third parties for marketing purposes.

5. Data Security

5.1 Security Measures

We implement industry-standard security measures to protect your data:

Encryption: All data transmitted between your device and our servers is encrypted using SSL/TLS protocols (HTTPS)
Secure Authentication: Google Firebase Authentication with OAuth 2.0
Access Controls: Role-based access restrictions ensuring only authorized personnel can view your data
Secure Storage: Data stored in secure, encrypted databases with regular backups
Firewall Protection: Network security measures to prevent unauthorized access
Regular Security Audits: Periodic reviews and updates of security protocols
Employee Training: Staff trained on data protection and confidentiality

5.2 Your Responsibility

You are responsible for:

Keeping your Google account credentials secure
Not sharing your account access with others
Logging out after using the System on shared devices
Reporting any suspected security breaches immediately to admissions@must.edu.eg

6. Data Retention

6.1 Active Applications

Application data retained throughout the admissions cycle
Payment records retained for at least 5 years for accounting purposes

6.2 Admitted Students

Data transferred to the University's main student information system (SAMS)
Retained in accordance with Egyptian education law and University records retention policy
Academic records retained permanently as part of official university archives

6.3 Unsuccessful Applications

Application data retained for 2 years for statistical analysis and potential reapplication
After 2 years, data may be archived or anonymized for research purposes
You may request earlier deletion (see Your Rights section)

7. Your Rights

Under Egyptian law and our commitment to data protection, you have the right to:

7.1 Access

Request a copy of the personal information we hold about you

7.2 Correction

Update or correct inaccurate information in your application (before submission deadline)

7.3 Deletion

Request deletion of your data, subject to:

Legal obligations requiring data retention
Ongoing admission processes
Academic records retention policies for admitted students

7.4 Objection

Object to certain uses of your data, though this may affect your application processing

7.5 Data Portability

Request a copy of your data in a structured, commonly used format

7.6 Withdraw Consent

Withdraw your application and associated consent for data processing (before admission decision)

To exercise these rights, contact: admissions@must.edu.eg

8. Cookies and Tracking

8.1 Cookies We Use

Type	Purpose	Duration
Essential Cookies	Authentication, session management, security	Session/Persistent
Functional Cookies	Remember preferences, language settings	Persistent
Analytics Cookies	Understand system usage, improve user experience	Persistent

8.2 Managing Cookies

You can control cookies through your browser settings. However, disabling essential cookies may prevent you from using the System effectively.

9. Third-Party Services

9.1 Google Firebase

We use Google Firebase for:

User authentication (Firebase Authentication)
Database hosting (Cloud Firestore/Realtime Database)
File storage (Cloud Storage)

Google's Privacy Policy: https://policies.google.com/privacy

9.2 Payment Gateways

QNB Alahli / MPGS: PCI-DSS compliant payment processing
Paymob: Secure payment gateway for Egyptian market

These services have their own privacy policies governing the handling of payment data.

10. International Data Transfers

Your data may be stored on servers located outside Egypt, particularly:

Google Cloud Platform servers (multiple regions)
Firebase services infrastructure

We ensure that any international transfers comply with Egyptian data protection requirements and that adequate safeguards are in place.

11. Children's Privacy

The System is intended for individuals aged 18 and above. We do not knowingly collect information from minors under 18 without parental consent. If you are under 18, please ensure you have permission from a parent or guardian before using the System.

12. Data Breach Notification

In the unlikely event of a data breach that may affect your personal information, we will:

Notify affected users within 72 hours via email
Report the breach to relevant Egyptian authorities
Take immediate steps to contain and remediate the breach
Provide guidance on protective measures you can take

13. Updates to This Privacy Policy

We may update this Privacy Policy periodically to reflect:

Changes in legal requirements
Updates to our data practices
New features or services
User feedback and best practices

We will notify users of significant changes via:

Email notification
Prominent notice on the System
Updated "Last Modified" date at the top of this policy

Continued use of the System after changes constitutes acceptance of the updated policy.

14. Contact Information

For Privacy-Related Inquiries:

Postgraduate Admissions Office
Misr University for Science & Technology
6th of October City, Giza, Egypt
Email: admissions@must.edu.eg
Website: admission.must.edu.eg

For General University Information:

Website: www.must.edu.eg
Phone: [University main phone number]

15. Governing Law

This Privacy Policy is governed by the laws of the Arab Republic of Egypt, including but not limited to:

Egyptian Constitution (Article 57 - Right to Privacy)
Law No. 151 of 2020 on Personal Data Protection
Relevant regulations from the Ministry of Higher Education

16. Consent

By using the MUST Postgraduate Admission System, you acknowledge that you have read, understood, and agree to this Privacy Policy and consent to the collection, use, and disclosure of your personal information as described herein.

Misr University for Science & Technology - Postgraduate Admission System