Privacy Policy

Privacy Policy

Last updated: 2 February 2026

This Privacy Policy explains how InnoCyber (“we”, “us”, “our”) collects, uses, shares, and protects personal data when you visit or interact with our website https://innocyber.ae (the “Website”), and when you contact us about our services.

We aim to process personal data in line with applicable laws and generally accepted privacy principles. This includes the UAE Personal Data Protection Law (PDPL) issued by Federal Decree-Law No. 45 of 2021 and its implementing regulations (together, the “UAE PDPL”), where applicable. If you are located in the European Economic Area (EEA) or the UK, we also apply GDPR-aligned standards as described below.

1) Who We Are (Controller)

InnoCyber operates this Website and acts as the data controller for personal data processed through it (unless stated otherwise).

Contact (privacy): [email protected]

If you operate under a specific UAE jurisdiction (e.g., DIFC or ADGM) with separate data protection rules, you may wish to add that here. This text is written to be PDPL-forward and generally compatible with common international standards.

2) Personal Data We Collect

Depending on how you use the Website, we may collect:

  • Contact details: name, business email, phone number (if provided), company name, and your message when you contact us.
  • Business inquiry details: information you choose to share about your project, requirements, or security needs.
  • Technical and usage data: IP address, device identifiers, browser type, operating system, pages visited, time spent, referring/exit pages, and timestamps.
  • Security logs: records related to abuse prevention, intrusion detection, and operational security (e.g., rate limiting events, suspicious activity indicators).

We do not intentionally collect sensitive personal data. Please avoid sending sensitive information (e.g., government IDs, financial details, medical data) via the Website unless we explicitly request it through a secure channel.

3) How We Use Personal Data

We may use personal data to:

  • Respond to inquiries, schedule consultations, and provide information about our services.
  • Operate, maintain, and improve the Website (performance, troubleshooting, analytics).
  • Protect the Website, our systems, and users (security monitoring, fraud/abuse prevention).
  • Comply with legal obligations and enforce our rights (e.g., handling claims, responding to lawful requests).

We do not sell personal data.

4) Legal Basis for Processing

Under the UAE PDPL and privacy best practices, we process personal data only when we have a valid justification, which may include:

  • Your consent (for example, where you voluntarily submit a form or accept non-essential cookies, where applicable).
  • Performance of a contract or steps taken at your request prior to entering a contract (for example, responding to a request for services).
  • Legitimate interests (for example, ensuring Website security, preventing abuse, improving services), provided such interests are not overridden by your rights.
  • Legal obligation (for example, responding to lawful government or regulatory requests).

Where consent is required by law for certain processing, we will request it and you can withdraw it at any time (see “Your Rights”).

5) Cookies and Similar Technologies

We may use cookies and similar technologies to enable core site functionality, enhance security, and understand usage. Cookies may be:

  • Essential (necessary for site operation and security)
  • Analytics (help us understand traffic and improve the site; used in aggregated form where possible)
  • Preferences (remember settings where applicable)

You can manage cookies via your browser settings. If you disable cookies, some features may not work correctly. If you use a dedicated cookie banner/consent tool, add a link here to your Cookie Policy.

6) Sharing and Disclosure

We may share personal data only as needed for the purposes above, including with:

  • Service providers (processors) such as hosting, infrastructure, security monitoring, and website analytics providers.
  • Professional advisers (legal, accounting) where necessary.
  • Authorities where required by applicable law or valid legal process.

When we use third-party service providers, we take reasonable steps to ensure they process data securely and only under our instructions.

7) International Transfers

Your personal data may be processed in countries outside the UAE depending on where our systems or service providers are located. Where required by the UAE PDPL or other applicable law, we apply appropriate safeguards for cross-border transfers, such as contractual protections and security measures.

8) Data Retention

We retain personal data only for as long as necessary for the purposes described in this Privacy Policy, including:

  • Inquiries and communications: retained as long as needed to respond and for reasonable business follow-up.
  • Security logs: retained for a limited period to investigate incidents and maintain system security.
  • Legal and compliance records: retained as required by applicable law and for legitimate legal purposes.

After retention periods expire, we securely delete, anonymize, or archive data in line with applicable requirements.

9) Your Rights

Depending on your location and applicable law (including the UAE PDPL), you may have rights such as:

  • Access to your personal data and information about how it is used
  • Correction of inaccurate or incomplete personal data
  • Deletion of personal data in certain circumstances
  • Withdrawal of consent where processing is based on consent
  • Objection to certain processing, where applicable
  • Restriction of processing in certain circumstances
  • Data portability in certain circumstances, where applicable

To exercise your rights, contact us at [email protected]. We may request information to verify your identity before responding.

EEA/UK Notice (GDPR-aligned)

If you are located in the EEA or UK, you may also have the right to lodge a complaint with your local data protection authority. We encourage you to contact us first so we can address your concerns.

10) Security

We implement appropriate technical and organizational measures to protect personal data, such as access controls, encryption where appropriate, monitoring, and secure configuration practices. However, no method of transmission or storage is completely secure, and we cannot guarantee absolute security.

11) Third-Party Links and Embedded Content

The Website may contain links to third-party websites or embedded content. We are not responsible for the privacy practices of those third parties. Please review their privacy policies before providing personal data.

12) Children’s Privacy

This Website is not intended for children. We do not knowingly collect personal data from children. If you believe a child has provided personal data to us, please contact us so we can take appropriate steps.

13) Changes to This Privacy Policy

We may update this Privacy Policy from time to time. The latest version will be posted on this page and the “Last updated” date will be revised. If changes are material, we may provide additional notice where appropriate.

14) Contact Us

For privacy questions or requests, contact: [email protected]

Disclaimer: This Privacy Policy is provided for general informational purposes and does not constitute legal advice. For formal compliance requirements, consult qualified legal counsel familiar with UAE PDPL and your operational setup.