Privacy Policy

Last updated: December 2024

This Privacy Policy explains how CodeCatalyst Solutions FZ-LLC ("we," "our," or "us") collects, uses, and protects your personal information in compliance with UAE laws and regulations.

1. SCOPE AND DEFINITIONS

This Policy applies to all personal data collected, processed, or stored by the Company, including but not limited to:

  • Personal identification data (name, email, phone, address)
  • Corporate and business information (company details, registration numbers)
  • Technical and project specifications (requirements, scope, deliverables)
  • Communication records (emails, calls, meetings, correspondence)
  • Financial and payment information (billing, transactions, invoices)
  • Technical data (IP addresses, cookies, usage analytics)

2. LEGAL BASIS AND PURPOSE OF PROCESSING

We process your personal data based on the following legal grounds and purposes:

  • Contract performance: Providing technical consulting and project services
  • Legitimate interest: Facilitating EU vendor network connections
  • Legal obligation: Compliance with UAE and international regulations
  • Consent: Marketing communications and service improvements
  • Vital interests: Emergency situations and security measures
  • Public interest: Regulatory reporting and legal proceedings

3. DATA SHARING AND THIRD-PARTY DISCLOSURES

Your personal data may be disclosed to the following categories of recipients:

  • EU vendor partners (subject to strict confidentiality agreements)
  • Professional service providers (legal, accounting, technical)
  • Regulatory authorities (as required by UAE law)
  • Business partners (with explicit written consent)
  • IT and security service providers (under strict data protection terms)

We expressly prohibit the sale, rental, or commercial exploitation of your personal data. Any sharing is conducted under strict confidentiality and data protection agreements.

4. DATA SECURITY AND PROTECTION MEASURES

The Company implements comprehensive technical and organizational security measures including encryption, access controls, regular security audits, employee training, and incident response procedures. We maintain ISO 27001 equivalent standards and conduct regular penetration testing to ensure data protection compliance with UAE and international standards.

5. DATA RETENTION AND DISPOSAL

Personal data retention periods are determined by legal requirements, business necessity, and consent duration:

  • Active client data: Service duration + 7 years (statutory limitation)
  • Marketing data: Until consent withdrawal or 3 years maximum
  • Legal and compliance records: As required by UAE law (minimum 10 years)
  • Technical logs: 2 years for security and audit purposes

6. DATA SUBJECT RIGHTS AND PROCEDURES

Under UAE Federal Law No. 45 of 2021, you have the following rights:

  • Right of access: Request confirmation of data processing and copies
  • Right of rectification: Correct inaccurate or incomplete data
  • Right of erasure: Request deletion subject to legal obligations
  • Right to restrict processing: Limit data use in specific circumstances
  • Right to data portability: Receive data in structured format
  • Right to object: Oppose processing based on legitimate interests
  • Right to withdraw consent: Revoke consent at any time

7. INTERNATIONAL DATA TRANSFERS

International data transfers to EU countries are conducted under strict safeguards including Standard Contractual Clauses (SCCs), adequacy decisions, and binding corporate rules. We ensure compliance with both UAE and EU data protection laws through comprehensive transfer impact assessments and regular monitoring.

8. COOKIES AND TRACKING TECHNOLOGIES

We utilize essential, functional, and analytics cookies to enhance website performance and user experience. Cookie preferences can be managed through browser settings. Third-party cookies are subject to separate privacy policies and consent mechanisms.

9. MINORS AND VULNERABLE PERSONS

Our services are strictly limited to individuals aged 18 and above. We do not knowingly collect or process personal data from minors. If we become aware of such collection, we will immediately delete the data and terminate any related services.

10. POLICY UPDATES AND NOTIFICATIONS

This Policy may be updated periodically to reflect legal changes, technological developments, or business practices. Material changes will be communicated through website updates, email notifications, or other appropriate means. Continued use of services constitutes acceptance of updated terms.

11. CONTACT INFORMATION AND COMPLAINTS

For privacy-related inquiries, rights requests, or complaints, please contact our Data Protection Officer:

  • Email: contact@gocatalyst.ae
  • Address: FDRK1971
    Compass Building,
    Al Shohada Road,
    AL Hamra Industrial Zone-FZ,
    Ras Al Khaimah, United Arab Emirates
  • Response time: We will acknowledge your request within 7 business days and provide a substantive response within 30 days as required by UAE law.

This Privacy Policy is fully compliant with UAE Federal Law No. 45 of 2021 on Personal Data Protection, UAE Federal Law No. 2 of 2019 on the Use of Information and Communication Technology in Health Fields, and all relevant international data protection standards including GDPR principles where applicable.

Back to Home