All Countries
Data Privacy
General Privacy Notice

General Privacy Notice Template for United Arab Emirates

Create a bespoke document in minutes,  or upload and review your own.

4.6 / 5
4.8 / 5

Let's create your General Privacy Notice

Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.

Get your first 2 documents free

Your data doesn't train Genie's AI

You keep IP ownership of your information

Key Requirements PROMPT example:

General Privacy Notice

"I need a General Privacy Notice for my e-commerce platform launching in March 2025, which will collect customer data across the UAE and GCC countries, with specific provisions for marketing communications and cross-border data transfers."

Celebrated by
Collaborations with
Investors
Document background
This General Privacy Notice serves as a fundamental compliance document for organizations operating in the United Arab Emirates that collect and process personal data. It is designed to meet the requirements of Federal Decree-Law No. 45/2021, as well as other applicable data protection regulations including those specific to free zones like DIFC and ADGM. The document should be implemented by any organization handling personal data to inform data subjects about their data processing activities, ensure transparency, and demonstrate compliance with UAE privacy laws. It is particularly important given the UAE's increasing focus on data protection and the significant penalties for non-compliance. The notice must be regularly reviewed and updated to reflect changes in data processing activities or regulatory requirements.
Suggested Sections

1. Introduction: Overview of the privacy notice and its purpose

2. Scope and Applicability: Who the privacy notice applies to and what activities it covers

3. Definitions: Key terms used throughout the privacy notice

4. Types of Personal Data Collected: Detailed categories of personal data collected and processed

5. Legal Basis for Processing: Legal grounds under UAE law for collecting and processing personal data

6. Purposes of Processing: How and why personal data is used

7. Data Sharing and Disclosure: Third parties with whom data is shared and circumstances of sharing

8. Cross-Border Data Transfers: Information about international data transfers and safeguards

9. Data Security Measures: How personal data is protected

10. Data Retention: How long personal data is kept and criteria for retention periods

11. Individual Rights: Rights of data subjects under UAE law and how to exercise them

12. Updates to Privacy Notice: How and when the privacy notice may be updated

13. Contact Information: How to contact the organization about privacy matters

Optional Sections

1. Children's Privacy: Required if services may be used by or data collected from children

2. Cookies and Tracking Technologies: Required for websites and online services that use cookies or similar technologies

3. Mobile App Privacy: Required if the organization operates mobile applications

4. Free Zone Specific Provisions: Required if operating in DIFC or ADGM with additional requirements

5. Sector-Specific Disclosures: Required for regulated industries like healthcare or financial services

6. Marketing Communications: Required if personal data is used for marketing purposes

7. Automated Decision Making: Required if using automated processing to make decisions about individuals

8. CCTV and Surveillance: Required if using surveillance systems in physical locations

Suggested Schedules

1. Data Processing Activities Register: Detailed list of data processing activities and their purposes

2. Third-Party Processors: List of approved data processors and their roles

3. Technical and Organizational Measures: Detailed description of security measures implemented

4. Cookie List: Comprehensive list of cookies used and their purposes

5. Data Retention Schedule: Detailed retention periods for different categories of personal data

Authors

Alex Denne

Head of Growth (Open Source Law) @ Genie AI | 3 x UCL-Certified in Contract Law & Drafting | 4+ Years Managing 1M+ Legal Documents | Serial Founder & Legal AI Author

Linkedin in social icon imageX social icon image
alex.den.21@genieai.co
Relevant legal definitions
Personal Data
Processing
Data Subject
Data Controller
Data Processor
Consent
Special Categories of Personal Data
Cross-border Transfer
Data Protection Officer
Data Protection Impact Assessment
Data Breach
Privacy Notice
Automated Processing
Pseudonymization
Encryption
Third Party
Recipient
Filing System
Biometric Data
Genetic Data
Profile
UAE Data Protection Law
DIFC
ADGM
Regulatory Authority
Technical Measures
Organizational Measures
Data Minimization
Storage Limitation
Data Subject Rights
Privacy by Design
Privacy by Default
Data Protection Principles
Legitimate Interest
Data Retention Period
Anonymous Data
Child
Direct Marketing
Electronic Communication
Information Security
Supervisory Authority
Relevant Industries

Financial Services

Healthcare

Technology

Retail

Education

Professional Services

Real Estate

Hospitality

Manufacturing

Transportation

Telecommunications

E-commerce

Media and Entertainment

Government Services

Energy

Relevant Teams

Legal

Compliance

Information Technology

Information Security

Risk Management

Human Resources

Marketing

Customer Service

Operations

Data Protection

Privacy

Corporate Governance

Internal Audit

Digital

Relevant Roles

Chief Privacy Officer

Data Protection Officer

Chief Legal Officer

Chief Compliance Officer

Privacy Manager

Legal Counsel

Compliance Manager

Information Security Officer

Risk Manager

IT Director

Chief Technology Officer

Operations Manager

Human Resources Director

Marketing Director

Customer Service Manager

Industries
Federal Decree-Law No. 45/2021: The UAE's primary federal data protection law that establishes the fundamental principles for collecting, processing, and storing personal data, including requirements for privacy notices
DIFC Law No. 5 of 2020: Dubai International Financial Centre's Data Protection Law, which follows GDPR-like principles and applies to companies operating in the DIFC
ADGM Data Protection Regulations 2021: Abu Dhabi Global Market's data protection regulations that govern personal data processing within the ADGM free zone
Federal Law No. 2 of 2019: Concerning the Use of Information and Communication Technology in Healthcare, which includes specific provisions for handling health-related personal data
UAE Cyber Crime Law (Federal Decree-Law No. 5 of 2012): Contains provisions relating to privacy violations and unauthorized access to personal data in digital format
Federal Law No. 15 of 2020: Consumer Protection Law that includes provisions related to consumer privacy and data protection in commercial transactions
UAE Central Bank Consumer Protection Regulation: Includes specific requirements for handling financial consumer data and privacy protection in the banking sector
Telecommunications and Digital Government Regulatory Authority (TDRA) regulations: Guidelines and regulations concerning digital privacy and data protection in telecommunications and digital services
Teams

Employer, Employee, Start Date, Job Title, Department, Location, Probationary Period, Notice Period, Salary, Overtime, Vacation Pay, Statutory Holidays, Benefits, Bonus, Expenses, Working Hours, Rest Breaks,  Leaves of Absence, Confidentiality, Intellectual Property, Non-Solicitation, Non-Competition, Code of Conduct, Termination,  Severance Pay, Governing Law, Entire Agreemen

Find the exact document you need

Privacy Information Notice

A UAE law-compliant notice detailing how an organization collects, processes, and protects personal data under Federal Decree-Law No. 45/2021.

find out more

Data Privacy Notice

UAE-compliant Data Privacy Notice outlining personal data handling practices under Federal Decree Law No. 45/2021.

find out more

Customer Privacy Notice

UAE-compliant privacy notice outlining customer data handling practices and rights under Federal Decree-Law No. 45 of 2021.

find out more

Privacy Notice Form

UAE-compliant privacy notice outlining personal data handling practices under Federal Decree-Law No. 45 of 2021.

find out more

Employee Data Privacy Notice

A mandatory notice under UAE data protection law explaining how an organization handles employee personal data, including collection, processing, and protection measures.

find out more

Client Privacy Notice

A legal document outlining an organization's personal data handling practices and client privacy rights under UAE data protection laws.

find out more

General Privacy Notice

UAE-compliant privacy notice outlining personal data handling practices under Federal Decree-Law No. 45/2021 and related regulations.

find out more

Privacy Notice Statement

UAE-compliant Privacy Notice Statement outlining personal data handling practices under Federal Decree-Law No. 45 of 2021.

find out more

Cookie Consent Notice

UAE-compliant Cookie Consent Notice outlining website cookie usage and user rights under UAE Federal Decree Law No. 45 of 2021.

find out more

Global Privacy Notice

A UAE law-compliant privacy notice outlining an organization's personal data handling practices and data subject rights under Federal Decree-Law No. 45/2021.

find out more

Applicant Privacy Notice

A legal notice explaining how job applicant data is handled and protected under UAE data protection laws.

find out more

Company Privacy Notice

A UAE-compliant privacy notice outlining an organization's personal data handling practices under Federal Decree Law No. 45 of 2021.

find out more

Data Processing Notice

A comprehensive Data Processing Notice compliant with UAE Federal Decree-Law No. 45/2021, outlining how organizations handle personal data in accordance with UAE data protection requirements.

find out more

Privacy Policy Notice

A legal document outlining an organization's personal data handling practices in compliance with UAE federal and free zone data protection laws.

find out more

Data Protection Notice

A UAE-compliant data protection notice outlining personal data handling practices and rights under Federal Decree-Law No. 45/2021.

find out more

Download our whitepaper on the future of AI in Legal

By providing your email address you are consenting to our Privacy Notice.
Thank you for downloading our whitepaper. This should arrive in your inbox shortly. In the meantime, why not jump straight to a section that interests you here: https://www.genieai.co/our-research
Oops! Something went wrong while submitting the form.

Genie’s Security Promise

Genie is the safest place to draft. Here’s how we prioritise your privacy and security.

Your documents are private:

We do not train on your data; Genie’s AI improves independently

All data stored on Genie is private to your organisation

Your documents are protected:

Your documents are protected by ultra-secure 256-bit encryption

Our bank-grade security infrastructure undergoes regular external audits

We are ISO27001 certified, so your data is secure

Organizational security

You retain IP ownership of your documents

You have full control over your data and who gets to see it

Innovation in privacy:

Genie partnered with the Computational Privacy Department at Imperial College London

Together, we ran a £1 million research project on privacy and anonymity in legal contracts

Want to know more?

Visit our Trust Centre for more details and real-time security updates.

Read our Privacy Policy.