Privacy Policy

1) Data We Collect

a) Data you provide

• Contact details (e.g., name, email) when you subscribe, submit a form, or contact us.
• Content you submit (comments, inquiries, feedback).

b) Data collected automatically

• Log and usage data (IP address, browser type, device information, pages viewed, timestamps, referrer URL).
• Approximate location based on IP (city/country level).
• Cookies, pixels, and similar technologies (see Cookies).

c) Data from third parties

• Analytics providers (e.g., aggregated traffic metrics).
• Advertising partners (ad impressions and clicks, if enabled).
• Affiliate networks (conversion events tied to our outbound links; see Advertising & Affiliates).

2) How We Use Data

• Provide, maintain, and improve the Site and its content about banks and financial services.
• Personalize content and remember preferences.
• Monitor performance, debug issues, and conduct analytics.
• Communicate with you (newsletters, responses to inquiries) with your consent where required.
• Prevent, detect, and respond to fraud, abuse, security risks, and policy violations.
• Comply with legal obligations and enforce our terms.

3) Legal Bases (EEA/UK)

If you are in the EEA or UK, we process personal data under these lawful bases:

• Consent (e.g., non-essential cookies, newsletters).
• Legitimate interests (e.g., site security, basic analytics, service improvement) where not overridden by your rights.
• Contract (e.g., responding to your requests where a contractual relationship exists).
• Legal obligation (e.g., compliance with applicable laws).

4) Cookies & Similar Technologies

We use cookies, pixels, and local storage to run the Site and understand usage.

• Strictly necessary: core functionality and security.
• Analytics: traffic and performance measurement.
• Advertising (if enabled): measure ad performance and deliver relevant content.

You can manage cookies via your browser settings and, where required by law, via our consent banner.

5) When We Share Data

• Service providers: hosting, analytics, email delivery, security, content delivery.
• Advertising & affiliate partners (if enabled): to attribute clicks/conversions and measure performance.
• Legal reasons: to comply with law, respond to lawful requests, or protect rights, safety, and security.
• Business transfers: as part of a merger, acquisition, or asset sale (with notice where required).
• Aggregated/De-identified insights that do not identify individuals.

6) Advertising & Affiliates

Our articles may include links to banks or financial services. We may participate in affiliate programs; if you click a link and take an action (e.g., open an account), we may earn a commission at no extra cost to you. Advertisers and affiliate networks may place or read cookies and receive limited technical data for attribution.

If interest-based advertising is enabled, you can opt out where applicable via your region’s choices, such as AboutAds or your device settings.

7) Data Retention

We keep personal data only as long as necessary for the purposes set out in this Policy, unless a longer retention period is required by law. Typical ranges:

• Server logs & analytics: 12–24 months (aggregated thereafter).
• Contact records: for the duration of the inquiry and up to 24 months for audit/security.
• Newsletter data: until you unsubscribe or request deletion.

8) Security

We use reasonable administrative, technical, and organizational measures to protect personal data. No online transmission or storage is 100% secure; we cannot guarantee absolute security.

9) International Transfers

Our providers may process data in countries outside your own. Where required, we rely on approved safeguards (e.g., Standard Contractual Clauses) to protect cross-border transfers.

10) Your Rights

EEA/UK

You may have the right to access, correct, delete, restrict, or object to processing, and data portability. Where processing is based on consent, you can withdraw it at any time.

California (CCPA/CPRA)

California residents may request to know, access, correct, and delete personal information, and to opt out of “sale” or “sharing” for cross-context behavioral advertising. We do not knowingly sell personal information of consumers under 16.

Submit a Privacy Request Do Not Sell or Share My Personal Information

We will not discriminate against you for exercising your privacy rights.

11) Do Not Track

Your browser may send a Do Not Track (“DNT”) signal. Our Site does not currently respond to DNT signals. We respect region-specific consent rules where applicable.

12) Children’s Privacy

The Site is not directed to children under 13 (or the relevant age of digital consent in your country). We do not knowingly collect personal data from such children. If you believe a child has provided personal data, please contact us and we will take appropriate steps to delete it.

13) Changes to This Policy

We may update this Policy from time to time. The “Last updated” date will reflect the latest changes. Material updates will be highlighted on this page or via a notice on the Site.

14) Contact Us

Data Controller: on-dubai.com

Email: support@on-dubai.com
Address: [Insert business address]

If you are in the EEA/UK and are not satisfied with our response, you may lodge a complaint with your local data protection authority.