Privacy
Policy
Introduction & Scope
ZEYATEK takes privacy seriously. We are headquartered in the Masdar City Freezone, Abu Dhabi, United Arab Emirates, and operate in full compliance with UAE data protection law, specifically Federal Decree-Law No. 45 of 2021 on the Protection of Personal Data, along with all applicable federal and freezone regulations.
This policy explains how we collect, use, protect, and retain personal information through our website and in the course of our client engagements. It applies to all our current and future data processing activities from the date it takes effect.
Information Collected
We collect professional and commercial information through direct business interactions, including corporate contact details and operational data gathered during advisory and technology consulting engagements.
Our website does not use browser fingerprinting, tracking pixels, or behavioural profiling to build individual profiles or monitor personal browsing activity beyond what is described in the Analytics section below.
Analytics
What we use: The ZEYATEK website uses Google Analytics to collect aggregated, non-personally identifiable data, such as broad geographic region, page traffic volumes, and device categories. This helps us understand how our content performs at a high level.
Google Analytics uses first-party cookies. We have configured IP anonymization and do not use it to track, identify, or profile individual visitors. Analytics data is never linked to a named person or email address in our systems.
You may opt out of Google Analytics tracking at any time by installing the Google Analytics Opt-out Browser Add-on, or by adjusting your browser's cookie settings. Opting out has no effect on your ability to access or use any part of this website.
How We Use Information
All personal and corporate data is used only for the purposes stated at the point of collection or set out in a signed commercial contract.
Information collected during client engagements is used to communicate, respond to inquiries, manage contracts and billing, and deliver our advisory services. Data processed during technology deployments, such as cloud migration, hybrid or multi-cloud architecture, identity and access management, threat detection, on-premise AI deployment, or legacy modernization, is used strictly under the documented instructions of the client.
Legal Basis for Processing
All processing has a clear, lawful basis under UAE data protection law, consistent with international best practice.
Aggregated, anonymized analytics data collected via Google Analytics is processed on the basis of our legitimate interest in understanding how our public-facing content performs. This does not override individual privacy interests.
Data Sharing & Disclosure
ZEYATEK does not sell, monetize, or share personal data with third parties without authorization.
We may disclose personal data when required by law, in response to a lawful subpoena, or when cooperating with federal regulatory authorities in the public interest.
Security Safeguards
Drawing on our expertise in Zero Trust Architecture, threat detection, and cyber resilience, we apply enterprise-grade technical and organizational controls to protect personal data against unauthorized access, accidental loss, alteration, or disclosure.
These controls include strong encryption for data at rest and in transit, rigorous identity and access management, and continuous system monitoring to detect and contain threats quickly.
Data Retention
We keep personal data only for as long as needed to fulfill the original purpose of collection, or as required by law.
Business, financial, and contractual records from consulting engagements are archived securely for the minimum statutory period, typically seven years from the end of the applicable tax period, in compliance with UAE Corporate Tax Law, the Federal Value Added Tax Law, and related federal accounting requirements.
Aggregated, anonymized analytics data is not personal data for retention purposes. It is subject to Google Analytics' own data retention settings, which we have configured to match our operational needs.
Your Rights
Under UAE Federal Decree-Law No. 45 of 2021, you have the following rights over your personal information:
- Right to transparent access to your personal data
- Right to rectification of inaccurate or incomplete information
- Right to erasure, subject to statutory retention requirements
- Right to restrict or object to specific processing activities
- Right to data portability in structured, machine-readable formats
- Right to withdraw consent at any time without affecting prior lawful processing
To exercise any of these rights, contact us at privacy@zeyatek.com.
Children's Privacy
Our website and services are intended for enterprise and adult users. Under the UAE Child Digital Safety Law and the Personal Data Protection Law, we do not knowingly collect or process personal data from anyone under eighteen.
If we find that data belonging to a minor has been collected without verified consent from a legal guardian, we will act immediately to remove it from all active and archival systems.
Policy Updates
We may update this policy to reflect changes in UAE law, freezone regulations, or our internal data practices. If we make material changes, we will notify active newsletter subscribers and enterprise clients directly, and update the effective date on this page.
Contact & Compliance Inquiries
Questions about this policy, how we handle your data, or exercising your rights are welcome. Get in touch at the address below.