IbaadU Trust & Security Centre

Every trade on IbaadU is protected by multi-layer KYC verification, escrow payment safeguards, and enterprise-grade platform security — so you can buy and sell wholesale with confidence across the Middle East.

KYC Verification Process

All vendors on IbaadU must complete a structured Know Your Customer (KYC) verification before listing any product or responding to PRQs. This ensures every supplier you interact with is a real, registered business.

Step 1 — Business Registration

Vendors submit their trade licence, commercial registration, or equivalent business document from their country of operation.

Step 2 — Identity Verification

Authorised signatory ID (passport or Emirates ID) is verified against business registration records.

Step 3 — Address & Bank Validation

Physical address proof and bank account details are cross-verified to prevent fraudulent listings.

Step 4 — Ongoing Monitoring

Vendor accounts are re-verified annually. Dispute patterns and buyer feedback trigger early re-review.

Buyer KYC: Procurer (buyer) accounts undergo lightweight verification — email, phone, and business name — with full KYC required for escrow transactions above AED 50,000.

Escrow Payment Protection

IbaadU supports structured payment coordination workflows where enabled for a transaction. Buyers and vendors should confirm milestone terms, payment method, delivery evidence, and dispute handling before proceeding.

  1. Buyer deposits funds into the IbaadU escrow account via Bank Transfer, Credit Card, LC, TT, or D/A.
  2. Vendor is notified and ships the wholesale goods with tracking details uploaded to the platform.
  3. Buyer confirms delivery and quality within the inspection window (default: 5 business days).
  4. Funds released to vendor upon confirmed acceptance — or held for dispute resolution if issues arise.
Supported payment methods: Bank Transfer (SWIFT/local), Credit Card, Letter of Credit (LC), Telegraphic Transfer (TT), Documents against Acceptance (D/A).
Supported currencies: AED, SAR, USD, QAR, KWD, BHD, OMR

Platform Security

IbaadU operates a defence-in-depth security architecture to protect all user data, communications, and transactions.

TLS 1.3 Encryption

All data in transit is encrypted using TLS 1.3 with HSTS preload and strict HTTPS enforcement.

Security Headers

Full Content-Security-Policy, X-Frame-Options: SAMEORIGIN, X-Content-Type-Options: nosniff, Referrer-Policy: strict-origin-when-cross-origin, and Permissions-Policy are enforced on every response.

Malware Scanning

Continuous server-side malware scanning is active. All uploaded documents are scanned before storage.

DDoS & WAF Protection

Enterprise-grade Web Application Firewall and DDoS mitigation protect platform availability 24/7.

Daily Backups

Automated daily backups with 30-day retention ensure data recovery in case of any incident.

Responsible Disclosure

We operate a responsible disclosure programme. Report vulnerabilities to security@ibaadu.com — see our security.txt.

Data Privacy

IbaadU is committed to the responsible handling of all user and business data in accordance with applicable UAE data protection laws and international best practices.

  • Personal and business data is collected only for the purposes of facilitating B2B trade and platform operations.
  • Data is never sold to third parties. Marketing communications require explicit opt-in.
  • KYC documents are encrypted at rest and retained only for the mandatory legal period.
  • Users may request data access, correction, or deletion via privacy@ibaadu.com.
  • Full details in our Privacy Policy.

ISO & Compliance Framework

IbaadU's operational and security practices are aligned with the following international standards and regional regulatory requirements:

ISO 27001 Information Security Management — aligned practices
UAE PDPL UAE Personal Data Protection Law compliance
AML/CFT Anti-Money Laundering controls on all financial transactions
PCI-DSS Aligned Card payment processing via PCI-compliant payment gateways

Dispute Resolution

IbaadU provides a structured dispute resolution process to protect both buyers and vendors when a trade does not go as agreed.

  1. Raise a Dispute: Either party can open a formal dispute within 10 days of the scheduled delivery date via their IbaadU dashboard.
  2. Evidence Submission: Both parties submit supporting documentation (shipping records, photos, communications) within 5 business days.
  3. Mediation Review: IbaadU's Trade Compliance team reviews all evidence and issues a preliminary ruling within 7 business days.
  4. Escalation: If either party contests the ruling, the case may be escalated to an independent mediator or relevant UAE commercial court.
  5. Escrow Release: Funds are released to the appropriate party once the dispute is resolved.

For non-escrow disputes, IbaadU provides mediation support as a courtesy service. Resolution outcomes depend on the cooperation of both parties.

Contact the Security Team

If you have discovered a security vulnerability, have a compliance question, or wish to report a suspicious vendor or transaction, please contact us directly:

Security Vulnerabilities
security@ibaadu.com
Response within 48 hours. See our security.txt.
Privacy & Data Requests
privacy@ibaadu.com
Data access, correction, or deletion requests.
Trade Compliance
compliance@ibaadu.com
KYC queries, AML concerns, dispute escalations.
General Support
support@ibaadu.com
+971 4 832 2447
Sun–Thu, 09:00–18:00 GST