Privacy and Cookies Policy

Last Updated: 01 oct 2024

Introduction

Jameati Platform (“Jameati“, “we“, “us“, or “our“) respects your privacy and is committed to protecting your personal data. This Privacy and Cookies Policy (“Policy“) explains how we collect, use, disclose, and safeguard your personal data when you visit our website [www.jameati.com] (the “Website“) and use our services (collectively, the “Services“).

By accessing or using our Services, you agree to this Policy. If you do not agree with the terms of this Policy, please do not access the Website or use our Services.

We are based in the United Arab Emirates (“UAE“) and comply with UAE Federal Decree-Law No. 45 of 2021 on the Protection of Personal Data (“PDPL“) and other applicable UAE laws. For users accessing our Services from outside the UAE, including the European Economic Area (“EEA“), the United Kingdom (“UK“), and the United States (“US“), we also comply with applicable data protection laws, including the General Data Protection Regulation (“GDPR“) and the California Consumer Privacy Act (“CCPA“).

Table of Contents

  1. What Personal Data We Collect
  2. How We Collect Your Personal Data
  3. Purposes and Legal Bases for Processing
  4. Use of Personal Data for Services to Third Parties
  5. Disclosure of Your Personal Data
  6. International Data Transfers
  7. Data Security
  8. Data Retention
  9. Your Rights
  10. Cookies and Similar Technologies
  11. Third-Party Links
  12. Children’s Privacy
  13. Changes to This Policy
  14. Contact Us
  15. Appendix 1: Additional Terms for EEA and UK Users
  16. Appendix 2: Additional Terms for California Users
  17. Limitation of Liability
  18. Dispute Resolution

1. What Personal Data We Collect

We may collect, use, store, and transfer different kinds of personal data about you, including:

  • Identity Data: First name, last name, maiden name, username or similar identifier, date of birth, gender, nationality, identification documents (e.g., passport details, national ID).
  • Contact Data: Billing address, delivery address, email address, telephone numbers.
  • Educational Data: Academic records, qualifications, transcripts, test scores, educational preferences, enrollment details.
  • Financial Data: Bank account details, payment card details, payment history.
  • Transaction Data: Details about payments to and from you and other details of products and services you have purchased from us.
  • Technical Data: Internet protocol (IP) address, your login data, browser type and version, time zone setting, location, browser plug-in types and versions, operating system, platform, and other technology on the devices you use to access the Website.
  • Profile Data: Your username and password, preferences, feedback, and survey responses.
  • Usage Data: Information about how you use our Website and Services.
  • Marketing and Communications Data: Your preferences in receiving marketing from us and our third parties and your communication preferences.
  • Health Data: Information about your health, including vaccination records, when required for application purposes.

2. How We Collect Your Personal Data

We use different methods to collect data from and about you, including:

2.1 Direct Interactions

You may provide personal data when you:

  • Create an account on our Website.
  • Fill out forms or applications.
  • Correspond with us by email, phone, or otherwise.
  • Apply for educational programs.
  • Participate in surveys or promotions.
  • Provide feedback or contact us.

2.2 Automated Technologies

As you interact with our Website, we may automatically collect Technical Data about your equipment, browsing actions, and patterns. We collect this personal data by using cookies, server logs, and other similar technologies.

2.3 Third Parties

We may receive personal data about you from various third parties, including:

  • Educational Institutions: Information regarding your applications, enrollment status, and academic records.
  • Recruitment Partners and Consultants: Data to assist with your educational and career opportunities.
  • Service Providers: Analytics providers, payment processors, and technical services.
  • Publicly Available Sources: Such as public databases or social media platforms when you interact with us through these channels.

3. Purposes and Legal Bases for Processing

We will only use your personal data when the law allows us to. Most commonly, we will use your personal data in the following circumstances:

3.1 To Provide Our Services

  • Purpose: Facilitate your exploration and application to educational programs, process payments, provide customer support.
  • Legal Basis: Performance of a contract with you; your consent.

3.2 To Process Applications and Communicate with Educational Institutions

  • Purpose: Submit your applications, share necessary information with institutions, receive updates on your behalf.
  • Legal Basis: Performance of a contract; legitimate interests; your consent.

3.3 To Improve Our Services

  • Purpose: Analyze data to improve our Website, products/services, marketing, customer relationships, and experiences.
  • Legal Basis: Legitimate interests (to keep our Services updated and relevant).

3.4 For Marketing and Promotions

  • Purpose: Provide you with information about services we offer that are similar to those you have already purchased or enquired about.
  • Legal Basis: Consent; legitimate interests (to develop our products/services and grow our business).

3.5 To Comply with Legal Obligations

  • Purpose: Fulfill legal requirements, respond to legal processes or requests from public authorities.
  • Legal Basis: Compliance with a legal obligation.

3.6 Data Analytics and Reporting

  • Purpose: Aggregate and anonymize data to generate insights and reports for government entities, educational institutions, consulting companies, and policy reform organizations.
  • Legal Basis: Legitimate interests; your consent where required.

4. Use of Personal Data for Services to Third Parties

We may use your personal data to provide services to government entities, educational institutions, consulting companies, policy reform organizations, and other similar entities. This may include:

  • Aggregated Data: Using aggregated and anonymized data to provide insights on educational trends, policy development, and consulting services.
  • Direct Services: Sharing necessary personal data with third parties when you have expressly consented or requested such services, such as scholarship opportunities, internships, or job placements.

We ensure that any data shared for these purposes complies with applicable data protection laws and that appropriate safeguards are in place to protect your personal data.

5. Disclosure of Your Personal Data

We may share your personal data with the following parties:

5.1 Educational Institutions

  • Purpose: To process your applications and facilitate enrollment.
  • Safeguards: Institutions are required to protect your data in accordance with applicable laws.

5.2 Service Providers

  • Purpose: Perform functions on our behalf, such as payment processing, data hosting, analytics, customer support.
  • Safeguards: Service providers are bound by contractual obligations to keep personal data confidential and use it only for specified purposes.

5.3 Government Entities and Policy Organizations

  • Purpose: Provide aggregated and anonymized data to support educational and policy initiatives.
  • Safeguards: Data shared is typically aggregated and does not identify individuals.

5.4 Business Transfers

  • Purpose: In the event of a merger, acquisition, restructuring, or sale of assets.
  • Safeguards: Successors are bound by this Policy or required to obtain your consent.

5.5 Legal Obligations

  • Purpose: Comply with legal obligations, court orders, or regulatory requests.
  • Safeguards: We assess all requests to ensure they are legally valid.

5.6 Protection of Rights

  • Purpose: Protect the rights, property, or safety of Jameati, our users, or others.

6. International Data Transfers

Your personal data may be transferred to and processed in countries outside the UAE, including countries in the EEA, UK, and US. These countries may not have the same data protection laws as the UAE.

When we transfer your personal data internationally, we ensure that:

  • Adequate Safeguards: Appropriate safeguards are in place, such as standard contractual clauses approved by relevant authorities.
  • Your Consent: In some cases, we may obtain your explicit consent for such transfers.
  • Legal Requirements: We comply with all legal requirements for international data transfers.

7. Data Security

We have implemented appropriate technical and organizational security measures to prevent your personal data from being accidentally lost, used, or accessed in an unauthorized way.

  • Encryption: Data is encrypted in transit and at rest where applicable.
  • Access Controls: Access to your personal data is limited to authorized personnel.
  • Monitoring: We regularly monitor our systems for vulnerabilities and attacks.

While we strive to protect your personal data, we cannot guarantee absolute security. Any transmission is at your own risk.

8. Data Retention

We will only retain your personal data for as long as necessary to fulfill the purposes we collected it for, including satisfying any legal, accounting, or reporting requirements.

  • Retention Periods: Determined based on the nature of the data and purposes for processing.
  • Legal Obligations: We may retain data to comply with legal obligations.
  • Anonymization: In some cases, we may anonymize your personal data so it can no longer be associated with you.

9. Your Rights

Subject to applicable laws, you have the following rights regarding your personal data:

9.1 Access

  • Right: Request access to your personal data and receive a copy.
  • How to Exercise: Contact us using the details in the “Contact Us” section.

9.2 Correction

  • Right: Request correction of inaccurate or incomplete personal data.
  • How to Exercise: Update your account settings or contact us.

9.3 Deletion

  • Right: Request deletion of your personal data under certain circumstances.
  • How to Exercise: Contact us with your request.

9.4 Objection

  • Right: Object to processing of your personal data for certain purposes, such as direct marketing.
  • How to Exercise: Adjust your preferences or contact us.

9.5 Restriction

  • Right: Request restriction of processing under certain conditions.
  • How to Exercise: Contact us specifying the grounds for restriction.

9.6 Portability

  • Right: Receive your personal data in a structured, commonly used format and transmit it to another controller.
  • How to Exercise: Contact us with your request.

9.7 Withdrawal of Consent

  • Right: Withdraw your consent at any time where processing is based on consent.
  • How to Exercise: Adjust your settings or contact us.

9.8 Complaint

  • Right: Lodge a complaint with a supervisory authority if you believe your rights have been violated.

We may need to verify your identity before fulfilling your request. We aim to respond to all legitimate requests within one month.

10. Cookies and Similar Technologies

We use cookies and similar tracking technologies to enhance your experience on our Website, analyze usage, and deliver targeted advertising.

10.1 What Are Cookies?

Cookies are small text files placed on your device to store data that can be recalled by a web server in the domain that placed the cookie.

10.2 Types of Cookies We Use

  • Strictly Necessary Cookies: Essential for the operation of the Website.
  • Performance Cookies: Collect information about how you use our Website.
  • Functional Cookies: Remember choices you make to improve your experience.
  • Targeting Cookies: Deliver relevant advertisements to you.

10.3 Managing Cookies

You can manage or disable cookies through your browser settings. However, disabling cookies may affect your ability to use certain features of our Website.

10.4 Third-Party Analytics

We use third-party analytics tools (e.g., Google Analytics) to understand how users interact with our Website. These tools may use cookies and collect data in accordance with their own privacy policies.

For more detailed information, please refer to our Cookies Policy.

11. Third-Party Links

Our Website may contain links to websites operated by third parties. We do not control these websites and are not responsible for their privacy practices. We encourage you to review the privacy policies of any third-party sites you visit.

12. Children’s Privacy

Our Services are not intended for individuals under the age of 16. We do not knowingly collect personal data from children without verifiable parental consent. If we become aware that we have collected personal data from a child without such consent, we will take steps to delete it.

13. Changes to This Policy

We may update this Policy from time to time. Any changes will be posted on this page with an updated “Last Updated” date. If we make significant changes, we will notify you by email or through a notice on the Website.

We encourage you to review this Policy periodically to stay informed about how we are protecting your information.

14. Contact Us

If you have any questions, concerns, or requests regarding this Policy or our data practices, please contact us at:

Jameati Platform

[Insert Physical Address]

Email: [privacy@jameati.com]

Phone: [Insert Phone Number]

Appendix 1: Additional Terms for EEA and UK Users

If you are located in the European Economic Area (“EEA“) or the United Kingdom (“UK“), the following additional terms apply.

A1.1 Legal Bases for Processing

We process your personal data based on the following legal grounds under the GDPR:

  • Consent: You have given clear consent for us to process your personal data for specific purposes.
  • Contract: Processing is necessary for the performance of a contract with you or to take steps at your request before entering into a contract.
  • Legal Obligation: Processing is necessary for compliance with a legal obligation.
  • Legitimate Interests: Processing is necessary for our legitimate interests or those of a third party, provided your interests and fundamental rights do not override those interests.

A1.2 International Transfers

When transferring your personal data outside the EEA or UK, we ensure:

  • Adequacy Decisions: Transfers are made to countries deemed to provide an adequate level of data protection.
  • Standard Contractual Clauses: We use approved contractual clauses to ensure your data is protected.

A1.3 Your Rights

In addition to the rights outlined in Section 9, you have the right to:

  • Lodge a Complaint: With your local data protection authority if you believe we have infringed your data protection rights.

Appendix 2: Additional Terms for California Users

If you are a resident of California, USA, the following additional terms apply under the California Consumer Privacy Act (“CCPA“) and California Privacy Rights Act (“CPRA“).

A2.1 Categories of Personal Data Collected

We collect the following categories of personal data as defined in the CCPA:

  • Identifiers (e.g., name, email, IP address).
  • Personal information categories listed in the California Customer Records statute.
  • Characteristics of protected classifications (e.g., gender, nationality).
  • Commercial information (e.g., transaction history).
  • Internet activity (e.g., browsing history).
  • Professional or employment-related information.
  • Education information.
  • Inferences drawn from other personal information.

A2.2 Your Rights

  • Right to Know: Request disclosure of personal data we have collected about you.
  • Right to Delete: Request deletion of personal data we have collected from you, subject to exceptions.
  • Right to Correct: Request correction of inaccurate personal data.
  • Right to Opt-Out: We do not sell personal data. If this practice changes, we will update this Policy and provide an opt-out mechanism.
  • Right to Limit Use of Sensitive Personal Information: You may direct us to limit the use of sensitive personal information.
  • Non-Discrimination: We will not discriminate against you for exercising your rights.

A2.3 Exercising Your Rights

To exercise your rights, please contact us:

  • Email: [privacy@jameati.com]
  • Phone: [Insert Toll-Free Number]

We may need to verify your identity before processing your request.

Limitation of Liability

To the maximum extent permitted by UAE law, Jameati and its affiliates, officers, directors, employees, agents, and partners shall not be liable for any indirect, incidental, special, consequential, or punitive damages arising out of or in connection with your use of the Services, even if advised of the possibility of such damages.

Dispute Resolution

Any disputes arising from or related to this Policy shall be governed by and construed in accordance with the laws of the United Arab Emirates. You agree to submit to the exclusive jurisdiction of the courts of the UAE for the resolution of any disputes.

Your privacy is important to us. We are committed to ensuring that your personal data is secure and used responsibly to provide our Services and support educational and policy development initiatives.

Please read this Policy carefully. By accessing or using our Website or Services, you acknowledge that you have read, understood, and agreed to be bound by all the terms of this Policy.