Datenschutz

Privacy Policy

This Privacy Policy informs you about the type, scope, and purpose of processing personal data (hereinafter referred to as "data") within the scope of our services, as well as within our online presence and its related websites, features, and content, including external online presences such as our social media profiles (collectively referred to as "Online Offer"). Regarding the terminology used, such as "processing" or "controller," we refer to the definitions in the UAE Federal Law No. 45 of 2021 on the Protection of Personal Data ("PDPL").

Controller Angel Success Consulting
Dubai Silicon Oasis, DDP, Building A2, UAE
+971503670592
[email protected]

Types of Data Processed

• Inventory data (e.g., personal data, names, or addresses).
• Contact data (e.g., email, telephone numbers).
• Content data (e.g., text entries, photographs, videos).
• Usage data (e.g., visited websites, interest in content, access times).
• Meta/communication data (e.g., device information, IP addresses).

Categories of Data Subjects Visitors and users of the online offer (hereinafter referred to collectively as "users").

Purpose of Processing

• Provision of the online offer, its functions, and content.
• Responding to contact inquiries and communicating with users.
• Security measures.
• Marketing and reach measurement.

Key Terms "Personal Data" refers to any information relating to an identified or identifiable natural person ("data subject"); an identifiable natural person is one who can be identified, directly or indirectly, particularly by reference to an identifier such as a name, an identification number, location data, an online identifier (e.g., cookies), or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural, or social identity of that natural person.

"Processing" refers to any operation or set of operations performed on personal data, whether or not by automated means. This term is broad and encompasses practically any handling of data.

"Pseudonymization" refers to the processing of personal data in such a manner that the personal data can no longer be attributed to a specific data subject without the use of additional information, provided that such additional information is kept separately and is subject to technical and organizational measures to ensure that the personal data are not attributed to an identified or identifiable natural person.

"Profiling" means any form of automated processing of personal data that involves using personal data to evaluate certain personal aspects relating to a natural person, particularly to analyze or predict aspects concerning the natural person’s work performance, economic situation, health, personal preferences, interests, reliability, behavior, location, or movements.

The "Controller" is the natural or legal person, public authority, agency, or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data.

"Processor" is a natural or legal person, public authority, agency, or other body that processes personal data on behalf of the controller.

Legal Basis for Processing As per Article 4 of the PDPL, the legal basis for obtaining consent is the data subject's explicit consent. The legal basis for processing for the performance of our services and execution of contractual measures, as well as responding to inquiries, is the necessity for the performance of a contract to which the data subject is party or to take steps at the request of the data subject prior to entering into a contract. The legal basis for processing to comply with our legal obligations is the necessity to comply with a legal obligation to which we are subject.

Security Measures We take appropriate technical and organizational measures to ensure a level of security appropriate to the risk, considering the state of the art, implementation costs, and the nature, scope, context, and purposes of processing, as well as the risk of varying likelihood and severity for the rights and freedoms of natural persons.

These measures include, in particular, securing the confidentiality, integrity, and availability of data by controlling physical access to the data, as well as access to the data, input, transmission, ensuring availability, and separation of data. We also have procedures in place to ensure the exercise of data subject rights, deletion of data, and response to data compromise. Furthermore, we consider the protection of personal data during the development or selection of hardware, software, and procedures, according to the principle of data protection by design and by default.

Collaboration with Processors, Joint Controllers, and Third Parties If, in the course of our processing, we disclose data to other persons and companies (processors, joint controllers, or third parties), transmit it to them, or otherwise grant them access to the data, this will only be done on the basis of a legal permission (e.g., if the transmission of the data to third parties, such as payment service providers, is required for contract performance), users have consented, a legal obligation provides for this or on the basis of our legitimate interests (e.g., when using agents, web hosts, etc.).

Transfers to Third Countries If we process data in a third country (i.e., outside the United Arab Emirates) or if this is done in the context of using third-party services or disclosing or transmitting data to other persons or companies, this will only be done if it is necessary for the performance of our (pre)contractual obligations, on the basis of your consent, due to a legal obligation, or on the basis of our legitimate interests. Subject to legal or contractual permissions, we process or have the data processed in a third country only if the legal requirements are met.

Rights of Data Subjects You have the right to request confirmation as to whether the data in question is being processed and to obtain information about this data, as well as further information and a copy of the data in accordance with the legal requirements.

You have the right to request the completion of data concerning you or the rectification of incorrect data concerning you in accordance with the legal requirements.

You have the right to request that data concerning you be deleted immediately, or alternatively, to request a restriction of the processing of the data in accordance with the legal requirements.

You have the right to receive the data concerning you that you have provided to us, in accordance with the legal requirements, and to request their transmission to other controllers.

You also have the right to lodge a complaint with the competent supervisory authority in accordance with the legal requirements.

Right to Withdraw Consent You have the right to withdraw your consent at any time with effect for the future.

Right to Object You can object to the future processing of data concerning you in accordance with the legal requirements at any time. The objection can be made, in particular, against processing for direct marketing purposes.

Cookies and Right to Object in Direct Marketing "Cookies" are small files that are stored on users' computers. Different information can be stored within the cookies. A cookie is primarily used to store the information about a user (or the device on which the cookie is stored) during or after their visit within an online offer. Temporary cookies, or "session cookies" or "transient cookies," are cookies that are deleted after a user leaves an online offer and closes their browser. In such a cookie, the content of a shopping cart in an online store or a login status can be stored, for example. As "permanent" or "persistent," cookies are referred to that remain stored even after the browser is closed. For example, the login status can be saved if the users visit them after several days. Likewise, in such a cookie, the interests of users can be stored, which are used for reach measurement or marketing purposes. "Third-party cookies" are cookies that are offered by providers other than the controller that operates the online offer (otherwise, if it is only their cookies, it is referred to as "first-party cookies").

We may use temporary and permanent cookies and clarify this within our Privacy Policy.

If users do not want cookies to be stored on their computer, they are asked to deactivate the corresponding option in the system settings of their browser. Saved cookies can be deleted in the system settings of the browser. The exclusion of cookies can lead to functional restrictions of this online offer.

A general objection to the use of cookies used for online marketing purposes can be made in a variety of services, especially in the case of tracking, via the US website http://www.aboutads.info/choices/ or the EU website http://www.youronlinechoices.com/. Furthermore, the storage of cookies can be achieved by disabling them in the settings of the browser. Please note that not all functions of this online offer may be available in that case.

Deletion of Data The data we process will be deleted or restricted in their processing in accordance with the legal requirements. Unless explicitly stated in the context of this Privacy Policy, the data stored by us will be deleted as soon as they are no longer required for their intended purpose, and the deletion does not conflict with any statutory retention requirements.

If the data is not deleted because it is required for other and legally permissible purposes, its processing will be restricted. This means that the data will be blocked and not processed for other purposes. This applies, for example, to data that must be retained for commercial or tax reasons.

Changes and Updates to the Privacy Policy We ask you to regularly inform yourself about the content of our Privacy Policy. We will adapt the Privacy Policy as soon as changes in the data processing activities we carry out make this necessary. We will inform you as soon as changes require your cooperation (e.g., consent) or other individual notification.