Privacy Policy
Last updated: February 2026
1. Introduction
NAIWA ("we," "us," or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our SME Certification Platform.
By using our services, you consent to the collection and use of information in accordance with this policy.
This Privacy Policy is compliant with the UAE Federal Decree-Law No. 45 of 2021 on the Protection of Personal Data (PDPL), which governs the collection, processing, and storage of personal data within the United Arab Emirates.
2. Information We Collect
Personal Information
- Name and contact information (email, phone number, address)
- Business information (company name, trade license details)
- Identity documents (Emirates ID, passport copies)
- Financial documents submitted for certification
- Account credentials and authentication data
Automatically Collected Information
- Device information and browser type
- IP address and location data
- Usage patterns and interaction with our platform
- Cookies and similar tracking technologies
3. How We Use Your Information
We use the information we collect to:
- Process certification applications and assessments
- Verify submitted documentation and evidence
- Maintain the public certification registry
- Communicate with you about your application status
- Improve our services and user experience
- Comply with legal and regulatory requirements
- Prevent fraud and ensure platform security
4. Data Sharing and Disclosure
We may share your information with:
- Public Registry: Certification status and basic enterprise information is published in our verification registry
- Service Providers: Third-party vendors who assist in operating our platform
- Legal Requirements: When required by law or to protect our rights
- Business Transfers: In connection with any merger, acquisition, or sale of assets
We do not sell your personal information to third parties for marketing purposes.
5. Data Security
We implement appropriate technical and organizational security measures to protect your information, including:
- Encryption of data in transit and at rest
- Access controls and authentication mechanisms
- Regular security assessments and audits
- Employee training on data protection
While we strive to protect your information, no method of transmission over the Internet is 100% secure.
6. Data Retention
We retain your information for as long as necessary to fulfill the purposes outlined in this policy, unless a longer retention period is required by law. Certification records are maintained indefinitely for verification purposes.
7. Your Rights
Subject to applicable law, you may have the right to:
- Access the personal information we hold about you
- Request correction of inaccurate information
- Request deletion of your information (subject to legal requirements)
- Object to certain processing activities
- Withdraw consent where processing is based on consent
To exercise these rights, please contact us at privacy@naiwa.ae.
8. Cookies and Tracking
We use cookies and similar technologies to enhance your experience, analyze usage patterns, and improve our services. You can control cookie preferences through your browser settings.
9. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new policy on this page with an updated "Last Updated" date.
Related Documents
Contact Us
For questions about this Privacy Policy or your personal data, please contact us at privacy@naiwa.ae