• +971 553867027
  • hello@xiongmaodigital.com
  • DIFC, Innovation Hub
Get Your Audit

Privacy Policy.

Privacy policy

Effective Date: 8 August 2025
Last Reviewed: 8 August 2025
Jurisdictions Covered: DIFC Data Protection Law No. 5 of 2020, UAE Federal Decree-Law No. 45 of 2021 on the Protection of Personal Data, GDPR (EU) compliance where applicable.

1. Introduction

We respect your privacy and are committed to protecting your personal information in compliance with the Data Protection Law, DIFC Law No. 5 of 2020 (“DP Law 2020”), UAE Federal Data Protection Law No. 45 of 2021 (“PDPL”), and other applicable regulations. This policy describes the types of personal data we process, the purposes for processing, and your rights.

This policy applies to:

  • Our websites: xiongmaodigital.com and subdomains

  • Our services: marketing, advertising, PR, digital consultancy, and related SaaS platforms

  • Our client portal: Ciano Digital Portal, including plugins and third-party integrations

2. Categories of Personal Data We Collect

We may collect and process:

  • Contact details: name, job title, company name, email, phone number

  • Business details: service preferences, project history, communications

  • Account access details: usernames, encrypted passwords (for portal users)

  • Payment information: where applicable, processed securely via third-party providers

  • Technical data: IP address, browser type, device information, login timestamps

  • We do not process Special Category Personal Data (health, biometrics, religion, political views, etc.)

3. Purposes and Legal Bases for Processing

We process personal data for:

  • Delivering our services and fulfilling contracts (Art. 10(c) DP Law 2020)

  • Managing client accounts, billing, and communications

  • Providing marketing, advertising, and PR services with your consent or legitimate interest

  • Ensuring portal security and fraud prevention

  • Complying with DIFC and UAE legal obligations

4. Data Transfers

We do not transfer personal data outside the DIFC jurisdiction unless:

  • You have given explicit consent, or

  • It is necessary to perform our services and appropriate safeguards are in place.

5. Data Retention

Personal data is retained only as long as necessary to fulfill the purposes for which it was collected or to meet legal, regulatory, or contractual requirements.

6. Data Subject Rights

Under DP Law 2020 and PDPL, you have the right to:

  • Access your data

  • Request correction or deletion

  • Restrict or object to processing

  • Data portability

  • Withdraw consent at any time

Requests can be made by email to privacy@xiongmaodigital.com or via our contact form.

7. Security Measures

We implement industry-standard technical and organizational measures, including encryption, secure hosting, access controls, and breach reporting procedures compliant with DP Law 2020.

8. Third-Party Processors

We engage trusted third parties for hosting, analytics, payment processing, and marketing tools. These providers are bound by contractual obligations to protect your data.

9. Breach Reporting

In the event of a data breach, we will notify the DIFC Commissioner of Data Protection and affected individuals within the timelines required by law.

10. Contact

Data Protection Contact:
Xiongmao Digital Tech Limited
Email: hello@xiongmaodigital.com
Address: DIFC, Dubai, UAE

This website uses cookies to ensure you get the best experience on our website as per our  privacy policy

got it