Data Privacy Policy

Effective Date: 27th June 2025

This Privacy Policy (“Policy”) outlines the collection, use, storage, and disclosure of personal data by Par Empire General Trading LLC (“Par Empire”, "Company", "we", "us", or "our") via the website www.parempire.com and affiliated mobile applications. This Policy is issued in accordance with the Protection of Personal Data (PDPL) of the United Arab Emirates and other applicable laws.

By accessing or using our platform, you acknowledge and agree to this Policy. If you do not agree, please do not use our services.

1. Legal Basis for Processing Personal Data

We only collect and process personal data:

With the explicit consent of the data subject.
For the performance of a contract with the data subject.
In compliance with legal or regulatory obligations.
To protect legitimate interests, provided such interests do not override fundamental rights.

All data is collected and processed lawfully, fairly, and transparently.

2. Data We Collect

We may collect the following categories of personal data:

A. Data Provided by Users

Identity details: full name, Emirates ID/passport, phone number, email, business license
Financial details: bank account numbers, payment card details, VAT registration, Trade License
KYC documentation: MOA, Power of Attorney, UBO details (for legal entities)
Business and transaction data: product listings, sales records, order history

B. Automatically Collected Data

Device data: IP address, browser, OS, unique device IDs
Site usage: session logs, clickstream, error logs
Tracking data: cookies, location (general), analytics metrics

No biometric, genetic, or health-related data is collected or stored.

3. Purpose of Data Use

Personal data is collected and used solely for:

User registration, verification, and account management
KYC, AML, and regulatory compliance screening
Transaction processing, delivery logistics, and dispute resolution
Risk management and fraud detection
Personalized communication (only with consent)
Platform security, system integrity, and troubleshooting
Complying with legal obligations, regulatory inquiries, or court orders

We will not use personal data for profiling, behavioral targeting, or automated decision-making without explicit prior consent.

4. Data Sharing & Disclosure

We do not sell or trade personal data. Disclosure is strictly limited to:

overnmental or regulatory authorities when legally required
Trusted third-party service providers (e.g., cloud, payment gateways, logistics) undersigned DPA and NDA agreements
Business partners only when consent is obtained from the user
Legal successors during acquisition, merger, or asset transfer, under confidentiality obligations
Law enforcement for fraud, cybersecurity, or legal investigations under proper authority

Any transfer of data to a foreign jurisdiction complies with the PDPL, including:

Ensuring equivalent legal protections exist in the recipient country, or
Obtaining explicit written consent from the data subject.

5. User Rights Under UAE PDPL

As a data subject, you are entitled to:

Right of Access - Obtain a copy of your personal data
Right to Rectification - Correct inaccurate or outdated data
Right to Erasure - Request deletion of personal data under lawful grounds
Right to Restriction - Limit how your data is processed
Right to Object - Object to processing for direct marketing or profiling
Right to Data Portability - Receive data in structured format
Right to Withdraw Consent - At any time, without affecting prior lawful processing

To exercise any of the above, contact us at [email protected] & [email protected]. All requests will be acknowledged within 5 working days and addressed within 30 calendar days.

6. Data Security & Safeguards

We maintain strict technical, physical, and administrative safeguards to prevent unauthorized access, alteration, disclosure, or destruction of personal data. These include:

End-to-end data encryption during transmission and storage
Role-based access controls and authentication mechanisms
Regular vulnerability assessments and system audits
Enforced employee confidentiality agreements and access logs

Users are responsible for keeping their login credentials secure.

7. Data Retention

We retain personal data only for the period necessary to fulfil the purposes outlined in this Policy or as required by law. Upon expiry, data will be securely deleted or anonymized. Copies retained for legal or audit purposes are protected with restricted access.

8. International Data Transfers

If your personal data is transferred outside the UAE, such transfers will only be made to jurisdictions with:

An adequate level of data protection, or
Subject to binding corporate rules, standard contractual clauses, or
Based on explicit user consent for cross-border transfers.

9. Cookies & Tracking Technologies

We use cookies strictly for the following purposes:

Enabling secure login and session continuity
Improving website functionality and performance analytics
Customizing user experience, based on explicit opt-in

Users are prompted via a cookie consent banner upon visiting the platform. You may disable cookies in your browser settings, though this may affect site functionality.

10. Third-Party Links

Our platform may contain links to external websites. We are not responsible for their content, privacy practices, or data collection activities. Users are advised to review the privacy policies of external sites separately.