Zhylar

Our privacy policy governs our privacy practices when you are using this website, and subdomains, our mobile application(s), and software as a product and/or service, hereinafter and collectively referred to as the website.

We take your privacy very seriously. Please read this privacy policy carefully as it contains important information on who we are and how and why we collect, store, use and share your personal data. It also explains your rights in relation to your personal data and how to contact us or supervisory authorities in the event you have a complaint.

This Privacy Policy applies to all users and/or partners of our website regardless of their location and is designed to comply with the Federal Decree-Law No. 45 of 2021 on the Protection of Personal Data in the United Arab Emirates (UAE PPD), the UK General Data Protection Regulation (UK GDPR), the UK Data Protection Act of 2018, the EU General Data Protection Regulation (EU GDPR) and other applicable global privacy laws. These regulations govern how we process, store, and protect your personal data, ensuring compliance with international privacy standards.

Key terms

It would be helpful to start by explaining some key terms used in this policy:

We, us, our	Zhylar Technologies FZCO and our group companies
Data Controller	Zhylar Technologies FZCO, 36110 - 001 DSO-IFZA, Building Name: IFZA Properties, Area Name: Dubai Silicon Oasis, Dubai, UAE.
Personal data	Any information relating to an identified or identifiable individual
Special category personal data	Personal data revealing racial or ethnic origin, political opinions, religious beliefs, philosophical beliefs or trade union membership Genetic data Biometric data (where used for identification purposes) Data concerning health, sex life or sexual orientation
Data subject, you, your, user, partner	Data subject, you, your, user, partner
Partner	An individual or company who has non-exclusive rights to resell, market, and distribute our software

Personal data we collect about you

The personal data we collect about you depends on the particular products and/or services we provide to you.
We will collect and use the following personal data about you:

your name, complete address, contact information, including email address and telephone number and company details

information to check and verify your identity, eg your date of birth

your gender, if you choose to give this to us

location data, if you choose to give this to us

your billing information, transaction and payment card information

your personal or professional interests

your professional online presence, eg LinkedIn profile

your contact history, purchase history and saved items

information related to the product and/or services associated with you

information from accounts you link to us, eg Facebook, Gmail

information to enable us to undertake credit or other financial checks on you

niformation about how you use our website, IT, communication and other systems

data relating to and/or derived from the operation of our products and services

IP address, browser type, operating system, device identifiers, and other usage data

your responses to surveys, competitions and promotions

your testimonials, social media posts, comments, feedbacks, etc

We collect and use this personal data for the purposes described in the section 'How and why we use your personal data' below. If you do not provide personal data we ask for, it may delay or prevent us from providing products and services to you.

How your personal data is collected

We collect most of this personal data directly from you—in person, by telephone, text or email and/or via our website. However, we may also collect information:

from a third party with your consent, eg your bank, or social media platforms

from cookies on our website—for more information on our use of cookies, please see below our cookie policy

via our IT systems, eg:
through automated monitoring of our websites and other technical systems, such as our computer networks and connections, communications systems, email and instant messaging systems.

Our Use of Cookies

Our website uses cookies. A cookie is a small piece of data or a text file that is downloaded to your computer or mobile device when you access certain websites. Cookies may contain text that can be read by the web server that delivered the cookie to you. The text contained in the cookie consists of a sequence of letters and numbers that uniquely identifies your device; it may contain other information as well.

By agreeing to accept our use of cookies you are giving us and the third parties with which we partner permission to place, store, and access some or all the cookies described below on your device:

Strictly Necessary Cookies - These cookies are necessary for the proper functioning of the website.

Performance Cookies - These cookies collect information about the use of the website.

Functional Cookies - These cookies enable the website to remember users' choices.

Media Cookies - These cookies can be used to improve a website's performance and provide special features and content. They can be placed by us or third parties who provide services to us.

Advertising or Targeting Cookies - These cookies are usually placed and used by advertising companies to develop a profile of your browsing interests.

Session Cookies - These cookies allow websites to link the actions of a user during a browser session.

Persistent Cookies - These cookies are stored on a user's device between browser and may be used for remembering users' choices and preferences.

We may also use cookies for:
- identifying the areas of our website that you have visited;
- personalizing the content that you see on our website;
- our website analytics;
- remarketing our products or services to you;
- remembering your preferences, settings, and log-in details;
- targeted advertising and serving ads relevant to your interests;
- allowing you to disclose content with social networks.

Most web browsers can be set to disable the use of cookies. However, if you disable cookies, you may not be able to access features on our website correctly or at all.

Collecting Information About Your Physical Location

When you use our services, we may collect and process information about your actual physical location. We use several technologies such as GPS and IP tracking to determine your location. These technologies may also give us information about nearby cell towers, Wi-Fi access points, and other devices.

Third-Party

We use third-party services to enhance your experience and provide seamless services. Below are the details of few of the third-party providers we work with. Please visit their respective websites for access to their Privacy Policies. We also require that our employees, contractors, partners, and agents comply with their policies:

Google API : By using our website, you are subject to the Google Privacy Policy and Terms of Service. When collecting and processing user data, including your personal data from Google APIs, we will follow Google API Services User Data Policy. We also require that our employees, contractors, partners, and agents comply with the Google API Services User Data Policy. To read more Click here

Google Analytics : Our website uses Google Analytics to collect information about the use of our website. Google Analytics collects information from users such as age, gender, interests, demographics, how often users visit our website, what pages they visit, and what other websites they have used before coming to our website. We use this data to analyse traffic and improve our marketing, advertising, and website. You can opt out of Google Analytics data collection by using the opt-out tool available at this link: Google Analytics Opt-Out. To read more Click here

Analytics : In addition to Google Analytics, we use analytics services from other companies to collect data on how our website is used. These services collect data such as frequency of visits, pages visited, time of visits, websites used before coming to our website, IP addresses. We use this information to improve our services. You can opt out of third-party analytics tracking by adjusting your browser settings, enabling “Do Not Track” (DNT) options, or using available opt-out tools from the respective service providers.

Google Ad and Content Network : Third-party vendors, including Google, use cookies, pixels, and other technologies to serve ads based on a user's past visits to our website. These technologies track your activities on our website and others, including the pages you visited, ads you clicked, items purchased, and search terms used. This allows us to deliver tailored advertising. You can opt out of interest-based advertising by Google and other third-party vendors by visiting http://www.aboutads.info/choices/.

CurrencyLayer : We use Currency Layer for managing currency exchange and conversion, ensuring real-time exchange rate updates for our platform.. We will follow Currency Layer's Privacy Policy to ensure the secure handling of data. To read more Click here

EmailEngine : We use Email Engine for email communication integration with Outlook and Gmail, allowing seamless email interactions and notifications. We will comply with Email Engine's Privacy Policy to protect user data. To read more Click here

Amazon Web Services (AWS) Hosting : Our platform is hosted on AWS, ensuring robust security, scalability, and compliance with industry standards. AWS provides data encryption, regular backups, and high-performance cloud hosting. We will adhere to AWS's Privacy Policy to maintain data security and privacy. To read more Click here

Pendo : We use Pendo for user analytics, in-app guidance, and improving customer experience. Pendo helps us enhance product usability and optimize customer interactions. We will follow Pendo's Privacy Policy to ensure the responsible use of user data. To read more Click here

Chat Software or Contact Forms : Our website includes chat software and contact forms that allow visitors to communicate with us, either online or offline via email. These features enable communication even if visitors have not purchased our products or services. When you use our chat software or contact forms, we may collect some or all the following information: your email address, first name, last name, location, and any other information you voluntarily provide. Please note that we encourage you to only share information that is necessary for us to answer your questions.

Remarketing : We use remarketing advertising services on our website. These services are provided by companies that display our ads across websites and devices on the Internet. Through remarketing, you may see ads for products or services you have previously viewed on our website. To enable remarketing, these companies will read a cookie in your browser. This can only occur if your browser settings allow cookies to be read. You can opt out of these types of advertising cookies by visiting https://adssettings.google.com/ or http://www.networkadvertising.org/choices/.

Sales Partner & payment handling

We collaborate with Partners who manage our users and sales channels for our website, ensuring seamless service. Our Partners are contractually obligated to comply with our data protection policies.

Payments flow:

user to Partner : users make payments directly to our authorized Partner(s);

Partner to us : Partner(s) remit payments to us in accordance with agreed commercial terms.

All transactions are securely processed through certified payment gateways to ensure compliance with security standards.

What happens if you don't give us your personal data

If you do not provide us with enough personal data, we may not be able to provide you with all our products and services.

Account and Data Management

Users have control over their account settings, including the ability to access their data, modify their data, and request for deletion of their data. These actions are in compliance with applicable data protection regulations.

Backup & Restore

To prevent data loss and provide recovery options in case of accidental deletion or system failure, we utilize backup & restore services, ensuring data integrity and security.

Local Storage

We store certain data in the local storage of the end user's browser to improve ease of access and time efficiency. This data includes personal information such as the user's name and email, as well as our information, including user activation status, organization reference number, role and permissions for the specific user, and an encrypted session token. This information is not stored as cookies but is copied from our database and retained in the browser's local storage for seamless user experience.

Data Security

We implement industry-standard security measures to protect your data from unauthorized access, alteration, or loss. Our AWS-hosted infrastructure ensures encrypted storage and secure transmissions.

How and why we use your personal data

Under data protection law, we can only use your personal data if we have a proper reason, eg:

where you have given consent;

to comply with our legal and regulatory obligations;

for the performance of a contract with you or to take steps at your request before entering into a contract; or

for our legitimate interests or those of a third party.

A legitimate interest is when we have a business or commercial reason to use your personal data, so long as this is not overridden by your own rights and interests.

The table below explains what we use your personal data for and why.

What we use your personal data for	Our reasons
Providing products and services to you	To perform our contract with you or to take steps at your request before entering into a contract
Processing payments and subscriptions	To execute financial transactions as per our contractual agreements
Preventing and detecting fraud against you or us	For our legitimate interest, ie to minimise fraud that could be damaging for you and/or us
Conducting checks to identify our customers and verify their identity Screening for financial and other sanctions or embargoes Other activities necessary to comply with professional, legal and regulatory obligations that apply to our business, eg rules issued by our professional regulator	Depending on the circumstances: to comply with our legal and regulatory obligations for our legitimate interests
To enforce legal rights or defend or undertake legal proceedings	Depending on the circumstances: to comply with our legal and regulatory obligations; in other cases, for our legitimate interests, ie to protect our business, interests and rights
Gathering and providing information required by or relating to audits, enquiries or investigations by regulatory bodies	To comply with our legal and regulatory obligations
Ensuring business policies are adhered to, eg policies covering security and internet use	For our legitimate interests, ie to make sure we are following our own internal procedures
Operational reasons, such as improving efficiency, training and quality control	For our legitimate interests, ie to be as efficient as we can so we can deliver the best service to you at the best price
Ensuring the confidentiality of commercially sensitive information	Depending on the circumstances: for our legitimate interests, ie to protect trade secrets and other commercially valuable information; to comply with our legal and regulatory obligations
Statistical analysis to help us manage our business, eg in relation to our financial performance, customer base, product range or other efficiency measures	For our legitimate interests, ie to be as efficient as we can so we can deliver the best service to you at the best price
Preventing unauthorised access and modifications to systems	Depending on the circumstances: for our legitimate interests, ie to prevent and detect criminal activity that could be damaging for you and/or us; to comply with our legal and regulatory obligations
Protecting the security of systems and data used to provide the products and services	To comply with our legal and regulatory obligations We may also use your personal data to ensure the security of systems and data to a standard that goes beyond our legal obligations, and in those cases our reasons are for our legitimate interests, ie to protect systems and data and to prevent and detect criminal activity that could be damaging for you and/or us
Updating and enhancing customer records	Depending on the circumstances: to perform our contract with you or to take steps at your request before entering into a contract; to comply with our legal and regulatory obligations for our legitimate interests, eg making sure that we can keep in touch with our customers about existing orders and new products
Statutory returns	To comply with our legal and regulatory obligations
Ensuring safe working practices, staff administration and assessments	Depending on the circumstances: to comply with our legal and regulatory obligations; for our legitimate interests, eg to make sure we are following our own internal procedures and working efficiently so we can deliver the best service to you
Marketing our services and those of selected third parties to: existing and former customers; third parties who have previously expressed an interest in our services; third parties with whom we have had no previous dealings.	For our legitimate interests, ie to promote our business to existing and former customers
Credit reference checks via external credit reference agencies	For our legitimate interests, ie to ensure our customers are likely to be able to pay for our products and services
External audits and quality checks, eg for ISO or Investors in People accreditation and the audit of our accounts	Depending on the circumstances: for our legitimate interests, ie to maintain our accreditations so we can demonstrate we operate at the highest standards; to comply with our legal and regulatory obligations
To share your personal data with members of our group companies, if any, and third parties that will or may take control or ownership of some or all of our business (and professional advisors acting on our or their behalf) in connection with a significant corporate transaction or restructuring, including a merger, acquisition, asset sale, initial public offering or in the event of our insolvency In such cases information will be anonymised where possible and only shared where necessary to	Depending on the circumstances: to comply with our legal and regulatory obligations; in other cases, for our legitimate interests, ie to protect, realise or grow the value in our business and assets

How and why we use your personal data—in more detail

More details about how we use your personal data and why are set out in the table below.

Purpose	Processing operation	Relevant categories of personal data
Communications with you not related to marketing, including about changes to our terms or policies or changes to the products or other important notices (other than those addressed above)
	Addressing and sending communications to you as required by data protection laws, ie: the UK GDPR or the EU GDPR or the UAE PPD	your name, address and contact information, including email address and telephone number and company details; your account details (username)
	Addressing and sending communications to you as required by applicable law	your name, address and contact information, including email address and telephone number and company details your account details (username)
	Addressing and sending communications to you about changes to our terms or policies or changes to the products or other important notices	your name, address and contact information, including email address and telephone number and company details your account details (username)

How and why we use your personal data—Special category personal data

Certain personal data we collect is treated as a special category to which additional protections apply under data protection law:

personal data revealing racial or ethnic origin, political opinions, religious beliefs, philosophical beliefs or trade union membership;

genetic data;

biometric data (when used to uniquely identify an individual);

financial data;

data concerning health, sex life or sexual orientation.

Where we process special category personal data, we will also ensure we are permitted to do so under data protection laws, eg:

we have your explicit consent;

the processing is necessary to protect your (or someone else’s) vital interests where you are physically or legally incapable of giving consent; or

the processing is necessary to establish, exercise or defend legal claims.

How and why we use your personal data—sharing

See Who we share your personal data with for further information on the steps we will take to protect your personal data where we need to share it with others.

Marketing

We will use your personal data to send you updates (by email, text message, telephone or post) about our products and services, including exclusive offers, promotions or new products and services.

We have a legitimate interest in using your personal data for marketing purposes (see above How and why we use your personal data ). This means we do not usually need your consent to send you marketing information. If we change our marketing approach in the future so that consent is needed, we will ask for this separately and clearly.

You do, however, have the right to opt out of receiving marketing communications at any time by:

contacting us at unsubscribe@zhylar.com

using the 'unsubscribe' link in emails.

We may ask you to confirm or update your marketing preferences if you ask us to provide further products and services in the future, or if there are changes in the law, regulation, or the structure of our business.

We will always treat your personal data with the utmost respect and never sell OR share it with other organisations outside our group companies, if any, for marketing purposes.

Who we share your personal data with

We routinely share personal data with:

companies within the group, if any;

third parties we use to help deliver our products and services to you, eg payment service providers;

other third parties we use to help us run our business, eg marketing agencies or website hosts;

third parties approved by you, eg social media sites you choose to link your account to or third party payment providers;

credit reference agencies;

our banks.

We or the third parties mentioned above occasionally also share personal data with:

our and their external auditors, eg in relation to the audit of our or their accounts, in which case the recipient of the information will be bound by confidentiality obligations;

our and their professional advisors (such as lawyers and other advisors), in which case the recipient of the information will be bound by confidentiality obligations;

law enforcement agencies, courts, tribunals and regulatory bodies to comply with our legal and regulatory obligations.

Who we share your personal data with—further information

If you would like more information about who we share our data with and why, please contact us (see How to contact us below).

How long your personal data will be kept

We will not keep your personal data for longer than we need it for the purpose for which it is used.

We only retain your personal data for as long as necessary to fulfill the purposes we collected it for, including to satisfy any legal, accounting, or reporting requirements. To determine the appropriate retention period for personal data, we consider the amount, nature, and sensitivity of the personal data. When your information is no longer needed, we will destroy, delete, or erase it. Otherwise, directly below is an estimate of the length of time we will keep each category of your personal data before we delete it.

If you no longer have an account with us or we are no longer providing products or services to you, we will retain your data for the maximum period permitted by applicable law or for as long as necessary to fulfill our legal, regulatory, and business obligations, after which it will be deleted or anonymized.

Transferring your personal data to other countries

It is sometimes necessary for us to transfer your personal data among countries in which we operate. In those cases, we will comply with applicable laws designed to ensure the privacy of your personal data. Wherever we transfer, process, or store your personal data, we will try to apply reasonable safeguards to protect it. We will use the information we collect from you by following the practices described in our privacy policy. Also, we enter into data processing agreements and standard contractual clauses when appropriate. By using our website, services, or products, you agree to the transfers of your personal data described within this section.

Your rights

You have the following rights, which you can exercise free of charge:

Access	The right to be provided with a copy of your personal data
Rectification	The right to require us to correct any mistakes in your personal data
Erasure (also known as the right to be forgotten)	The right to require us to delete your personal data—in certain situations
Restriction of processing	The right to require us to restrict processing of your personal data in certain circumstances, eg if you contest the accuracy of the data
To object	The right to object: at any time to your personal data being processed for direct marketing (including profiling); in certain other situations to our continued processing of your personal data, eg processing carried out for the purpose of our legitimate interests unless there are compelling legitimate grounds for the processing to continue or the processing is required for the establishment, exercise or defence of legal claims
The right to withdraw consent	If you have provided us with a consent to use your personal data you have a right to withdraw that consent easily at any time You may withdraw consent by dpo@zhylar.com Withdrawing consent will not affect the lawfulness of our use of your personal data in reliance on that consent before it was withdrawn

For more information on each of those rights, including the circumstances in which they apply, please contact us (see How to contact us below).

If you would like to exercise any of those rights, please:

email, call or write to us—see below: How to contact us;

provide enough information to identify yourself [ (eg your full name, address and customer or matter reference number)] and any additional identity information we may reasonably request from you; and

let us know what right you want to exercise and the information to which your request relates.

Keeping your personal data secure

We have appropriate security measures to prevent personal data from being lost accidentally, or used or accessed unlawfully. We limit access to your personal data to those who have a genuine business need to access it. Those processing your personal data will do so only in an authorised manner and are subject to a duty of confidentiality.

We also have procedures to deal with any suspected data security breach. We will notify you and any applicable regulator of a suspected data security breach where we are legally required to do so.

Links to other websites

Our website may contain links to other websites. These websites are not under our control and are not subject to our privacy policy. We have no responsibility for these websites, and we provide links to these websites solely for your convenience. You accept that your use of and access to these websites are solely at your risk.

Use of your credit/debit card

You may have to provide a credit or debit card to buy products and services from our website. We use third-party billing services and have no control over them. We use commercially reasonable efforts to ensure that your credit card number is kept strictly confidential by using only third-party billing services that use industry-standard encryption technology to protect your credit card number from unauthorized use. However, you understand and agree that we are in no way responsible for any misuse of your credit card number.

How to complain

Please contact us if you have any queries or concerns about our use of your personal data (see below How to contact us ). We hope we will be able to resolve any issues you may have.

Changes to this privacy policy

This privacy policy was published on 26th February 2025 and last updated on 26th February 2025.

We may change this privacy policy from time to time—when we do we will inform you via our website or other means of contact such as email.

Updating your personal data

We take reasonable steps to ensure your personal data remains accurate and up to date. To help us with this, please let us know if any of the personal data you have provided to us has changed, eg your surname or address—see below How to contact us.

How to contact us

You can contact us by email if you have any questions about this privacy policy or the information we hold about you, to exercise a right under data protection law or to make a complaint.

Our contact details are dpo@zhylar.com

Privacy Policy