Security & Compilance
VAT/Tax Compliance
Qoyod is designed for MENA region compliance including:
- Saudi Arabia VAT (15%)
- UAE VAT (5%)
- E-invoicing requirements (ZATCA compliance for Saudi Arabia)
Ensure your integration properly handles tax calculations and maintains compliance with local regulations.
Data Security
- All API traffic uses HTTPS/TLS encryption
- Store API keys securely using environment variables or secret managers
- Never log or expose API keys in client-side code
- Implement proper access controls for API key management
- Regularly rotate API keys as part of security best practices
GDPR and Data Privacy
When handling customer data:
- Only request and store necessary information
- Implement proper data retention policies
- Provide mechanisms for data export and deletion
- Ensure compliance with applicable privacy regulations
Security Best Practices
caution
Never share your API secrets publicly or commit it to version control.
caution
Regenerate your API secrets immediately if you suspect it has been compromised.
info
Store your API secrets securely using environment variables or secret management tools.
info
Use HTTPS for all API requests.