x

Privacy Policy

PURPOSE

This document serves as the Privacy Policy of Arada Developments LLC (the “Company”), herein detailing the management of personal information in adherence to the Data Protection Law (the “Law”). It explicates the protocols for the collection, utilization, disclosure and safeguarding of personal information under the stipulations of the Law.

SCOPE

The scope of this Privacy Policy encompasses all personal information processed during the business operations of the Company, including but not limited to interactions on the Company’s website, mobile applications and other digital or physical engagements.

COLLECTION OF INFORMATION

Rationale for Collecting Personal Data

The collection of Personal Data is strictly for the provision of services, execution of business operations and compliance with applicable laws, including anti-money laundering statutes. Information may be retained from various sources, including but not limited to:

  • Clients, their representatives or beneficial owners.
  • Compliance with legal obligations.
  • Information received in the context of service provision.
  • Service providers to the Company.
  • Regulatory, certification or government bodies engaged with the Company.
  • Participants in seminars, webinars or events, subscribers to newsletters, visitors to offices or websites.
  • Job applicants and employees.

Information Categories

  • Individual Details: Including name, contact information, domicile, gender, marital status, birth details, nationality, employment history and familial relationships.
  • Identification Details: Government-issued identification numbers and documents.
  • Financial Information: Details pertaining to bank accounts, income and financial background.
  • Anti-Money Laundering and Sanctions Data: Data from various databases related to anti-money laundering and counter-terrorism financing.
  • Special Categories of Personal Data: Political opinions, affiliations or criminal records as necessitated by Law.
  • Identifiers: Digital traces such as IP addresses or website tracking codes.

Special Categories of Personal Data are collected under specific conditions warranted by Law or when necessary for compliance.

Utilization of Information

The gathered information is utilized for service provision, client relationship management, transaction processing, internal operations, staff recruitment and legal compliance.

SHARING OF INFORMATION

The Company does not sell or indiscriminately distribute personal data. Information sharing occurs under specific circumstances, including:

  • Verification processes through screening databases.
  • Engagement with external service providers.
  • Collaboration with the Company’s affiliates for operational efficiency.
  • Legal or regulatory compliance necessitating data sharing.

All data sharing, especially across borders, is conducted in compliance with the Personal Data Protection Law, Federal Decree Law No. 45 of 2021 regarding the Protection of Personal Data Data Protection Law, ensuring data security and confidentiality.

DATA SUBJECTS’ RIGHTS

In alignment with the Personal Data Protection Law, Federal Decree Law No. 45 of 2021 regarding the Protection of Personal Data, data subject possesses rights concerning their personal data. These rights include:

  • Receiving information about the nature of personal data held by the Company, including its usage, any sharing or transfer of such data.
  • Obtaining a copy of the personal data maintained by the Company.
  • Requesting the Company to rectify personal data if it is inaccurate or incomplete.
  • Erasing personal data for which the Company no longer possesses a lawful basis for processing or in instances where consent for processing has been withdrawn.
  • Ceasing processing of personal data where such processing is solely based on consent, by withdrawing consent.
  • Objecting the processing of their personal data based on the legitimate interests of the Company, unless the Company demonstrates compelling legitimate grounds for the processing that override the interests, rights and freedoms of the data subject.
  • Restricting the processing of their personal data under certain conditions, such as while the accuracy or the lawful basis of the personal data is being contested.

There may be situations where the rights of individuals need to be restricted to protect public interest (such as crime prevention or detection) or the Company’s interests (such as responding to regulatory inquiries). These exceptions and limitations are in accordance with the stipulations of the Law.

INTERNATIONAL TRANSFERS

Personal information may be processed outside the jurisdiction of residence. Such international transfers are conducted with a steadfast commitment to ensuring the security and proper handling of personal data, in full alignment with the provisions of this privacy policy and the stringent requirements of the Personal Data Protection Law, Federal Decree Law No. 45 of 2021 regarding the Protection of Personal Data.

DATA SECURITY AND BREACH NOTIFICATION

Security Measures

The Company is dedicated to the security of personal information, implementing comprehensive technical and organizational measures to prevent unauthorized access, disclosure, alteration or destruction. These measures are designed to secure personal information and protect it from accidental or unlawful processing.

Our security practices include, but are not limited to:

  • Encryption of data in transit and at rest.
  • Regular cybersecurity assessments and penetration testing.
  • Access controls to ensure only authorized personnel can access personal data.
  • Secure development practices for our online services.
  • Employee training on data protection and privacy.

Breach Notification

In the event of a data breach, the Company will promptly assess and respond to the incident, notifying the Data Protection Commissioner and affected data subject if there is a risk to their rights and freedoms, in accordance with Data Protection Law.

In instances where a data breach is assessed unlikely to result in a risk to the rights and freedoms of data subjects, the Company will internally record the incident and implement corrective measures to avert similar future occurrences. Under these circumstances, individual notifications to those affected may not be issued.

POLICY REVIEW

This policy is reviewed periodically to ensure ongoing compliance with the Data Protection Law. The current version is dated 4 September 2024.

CONTACT INFORMATION

In line with Data Protection Law, the Company provides accessible means for individuals to exercise their rights and address inquiries or complaints regarding personal data:

Email:

Data subjects can contact via email at: [email protected]

Postal Mail:

Data subjects can also contact us by sending a letter to the following address:

Compliance Department
Arada Developments LLC
Festival Tower, 19th floor, Dubai Festival City
PO Box: 644 753

The Company is committed to the transparent and secure management of personal data and encourages direct communication for any related concerns or questions.

    © 2024 Arada Developments LLC Arada

    Register Your Interest