Privacy Policy

Effective Date: 16/06/2025

1. Introduction

We (“Company”, “we”, “our”, “us”) are committed to protecting the privacy and security of personal data collected through our website and in the course of delivering our services. This Policy explains how we gather, use, share, and safeguard personal data, and outlines your privacy rights.

2. Scope & Legal Framework

  • We process data lawfully, fairly, and transparently, in accordance with applicable Gulf regulations (such as PDPLs), GDPR where relevant, and other international standards.
  • We collect data only for specified, legitimate purposes and avoid excessive collection.

3. Types of Data We Collect

  • Personal and contact information: name, title, organisation, address, phone, email, etc.
  • Communications: any content you provide via emails, forms, comments, or meetings.
  • Usage Data & cookies: IP address, browser info, page visits, analytics data via cookies and web beacons.

4. How We Collect Data

  • Directly via web forms, email, phone, and meetings.
  • Automatically through website tracking technologies.
  • Occasionally from public sources (e.g., government records, LinkedIn).

5. Purposes and Legal Bases for Processing

We process data for:

  • Delivering our advisory and consulting services.
  • Managing communication and queries.
  • Meeting legal, tax, and regulatory obligations.
  • Receiving feedback, improving services, marketing insights.
  • Enforcing legal rights and defending legal claims.

Legal bases include: Performance of contract, Legitimate interests, Consent (marketing), Compliance with legal duties.

6. Sharing & International Transfers

  • Shared with service providers bound by contract to use data only on our behalf.
  • Internal sharing across group/affiliate offices for business operations.
  • Disclosed to comply with law, respond to public authorities, or defend legal rights.
  • Transfers outside Gulf jurisdictions occur based on safeguards like adequacy status, contractual clauses, or explicit consent.

7. Data Security

We implement administrative, technical, and physical safeguards to protect personal data, including encryption, access controls, and staff training.

8. Retention of Data

Data is retained only as long as necessary. Analytics data may be anonymised and retained longer for analysis or security.

9. Data Subject Rights

  • Access to your personal data
  • Correction of inaccurate or outdated information
  • Deletion (“right to be forgotten”)
  • Restriction or objection to processing
  • Data portability
  • Withdraw consent at any time for marketing communications

10. Cookies & Tracking Technologies

We use cookies, web beacons, and other tools to enhance your experience and analyse site usage. You can manage preferences via the cookie banner.

11. Breach Notification

We will notify authorities and affected individuals of data breaches within applicable timeframes (e.g., within 72 hours under GDPR).

12. Updates to This Policy

This Policy is updated regularly. Updates are posted on our website with a new “Effective Date.” Significant changes will be communicated directly.

13. Contact and Complaints

For inquiries, rights requests, or complaints, contact:

Data Protection Officer
[Name, Email, Office Address]

If unsatisfied, you may escalate your complaint to the relevant data protection authority.

Summary of Key Principles

Principle Explanation
Lawfulness & Transparency We process only what is needed, and inform you clearly.
Purpose Limitation No hidden or secondary usage beyond stated purpose.
Data Minimisation We collect only necessary data.
Security Robust protections in place.
Data Subject Rights Respecting access, correction, deletion, portability, objection.
Cross‑Border Transfers Conducted under legal safeguards.

Title goes here

Maila Boudi 12/06/2025

Title goes here

Jamil Fahmani 12/06/2025

Title goes here

Jamil Fahmani 12/06/2025