Our Privacy Policy

Last Updated: 25/12/2024

Introduction
This Privacy Policy ("Policy") outlines how MyGatePass FZ-LLC ("Company", "we", "us", or "our"), a Limited Liability Company registered under Dubai Development Authority, collects, uses, discloses, and protects your information. This Policy applies to all MyGatePass platforms, including the Visitor App, Security App, Admin Dashboard, Website, and APIs (collectively, "Services"). By using our Services, you agree to this Policy. We reserve the right to change or update this Policy at any time without prior notice, and your continued use of the Services constitutes acceptance of any modifications.

Information We Collect
Direct Information:

  • Contact Information: Name, email address, and phone number.
  • Government-Issued IDs: For identity verification with user consent.
  • Location Data: GPS location, when required and with user consent.
  • Other Details: Address, role-based details for Admins, or additional information for personalized experiences.
Automatic Information:
  • Device Information: Hardware, operating system, and network data.
  • Usage Logs: Pages accessed, features used, timestamps, and interactions with APIs.
  • Cookies and Tracking: Collected through tools to improve user experience.
Third-Party Information:
  • Data from UAE Pass or other government-authorized identity verification systems.
  • Information from integrated services like API integrations, and other integrations with tools and software used.
Offers and Invitations (Apps):
  • Data related to offers unlocked and invitations received within the app to enhance your experience.

How We Use Your Information
Your information is used to:

  • Operate and provide the Services.
  • Enhance user experience and platform functionality.
  • Ensure security and compliance with relevant laws.
  • Offer features, content, and advertisements.
  • Facilitate API interactions and third-party integrations.
  • Track and improve user engagement with offers, invitations, and other actions on the Apps.
  • Fulfill business and legal obligations.
  • Analyze visitor data using AI tools to generate insights and improve services.
Important Note: Information collected for security and compliance purposes may be anonymized and aggregated for analysis and insights. Such anonymized data may be used to improve Services, create data group segments, and deliver advertising, without identifying individual users.

Disclosure of Information
We may share your data:

  • With Service Providers: For operational purposes, including data storage, analytics, and integrations.
  • For Legal Compliance: When mandated by laws or regulations.
  • During Business Transfers: Such as mergers or acquisitions.
Data Ownership in Visitor Logs: While MyGatePass acts as the data controller for information stored and managed within our SaaS cloud, paying clients may use integrations or export tools to transfer visitor data to their own systems. Once a visitor consents to sharing their details, the receiving entity (e.g., real estate or business entity) assumes responsibility for that data as its data controller. MyGatePass remains the data controller for data within its systems, while exported data is managed by the client in accordance with their obligations under applicable data protection laws.

Data Retention
We retain data as needed for operational purposes or as legally required. Specific retention periods include:

  • Visitor data logs: Always retained for active and undeleted profiles.
  • User account data: Retained for the duration of active use and up to 12 months post-deletion.
  • Log files: Retained for 30 days for technical analyses purposes.

Your Rights
You have the right to:

  • Access and review your data in a commonly used format (available directly on the App).
  • Request corrections to inaccurate information.
  • Request data deletion, where permissible.
Requests can be made via the appropriate Service platform or by contacting us on privacy@mygatepass.com. We will assess the impact of your request on security, compliance, and operational integrity before taking action.

Security
All data is securely stored and processed within the UAE, ensuring compliance with local data protection laws, including PDPL. We employ industry-standard security measures, including compliance with ISO 27001 standards, to protect your data. However, no system is entirely secure, and we cannot guarantee absolute protection.

Children's Privacy
Our Services are not directed to children under 11 years old. We do not knowingly collect information from this age group. If we become aware of such data, we will delete it immediately.

Cookies and Tracking
We use cookies and analytics tools to understand user behavior and improve our Services. These tools may include, but are not limited to, technologies like Google Analytics 4 (GA4), Google Ads cookies, Meta Pixel, Microsoft Clarity, and others for tracking, analytics, and advertising. You may delete your profile if you no longer wish to use our Services or have your data processed. We encourage users to manage their browser settings for additional cookie preferences.

Marketing and Remarketing
With your consent, we may send updates, promotional materials, and advertisements via email, SMS, WhatsApp, or other channels. Remarketing services may be used to display targeted ads based on your interactions with the Services.

Compliance
We comply with:

  • GDPR for European Economic Area users.
  • PDPL under UAE Federal Decree-Law No. 45 of 2021.

Data Breach Notifications
In the event of a data breach, we will notify affected clients within 72 hours of discovery, detailing the breach’s scope, nature of data affected, and mitigation steps taken.

Use of APIs and Integrations
Our Services may include integrations with third-party APIs, such as Outlook API, UAEPASS, and others. These APIs enhance functionality and ensure seamless interactions between systems. Data shared through APIs is managed in compliance with this Policy and the privacy terms of the respective API providers.

Data Management Platform (DMP)
We may use Data Management Platforms to aggregate and analyze anonymized user data to improve Services and provide insights. Aggregated data is handled in compliance with applicable laws.

Updates to this Policy
We reserve the right to change this Policy at any time without obtaining prior approval from users. We encourage users to periodically review this Policy and other documents for updates. Continued use of our Services after any changes constitutes acceptance of the revised Policy and any other legal document that needs the consent of the user.

Contact Us
For privacy-related inquiries, contact us at: privacy@mygatepass.com.

Effective Date
This Privacy Policy was updated on 25 December 2024.