GDPR Privacy Policy for The Emirates Reserve
Last Updated: August 31, 2025
1. Introduction and Who We Are
This GDPR Privacy Policy outlines how The Emirates Reserve (“we,” “us,” “our”), the data controller for the website theemiratesreserve.com (the “Site”), collects, uses, processes, and protects the personal data of our users (“you”), particularly those residing in the European Economic Area (EEA).
We are committed to protecting your privacy and ensuring that your personal data is handled in a safe, secure, and transparent manner, in compliance with the General Data Protection Regulation (EU) 2016/679 (GDPR).
This policy should be read in conjunction with our main Privacy Policy.
Data Controller Contact Information: The Emirates Reserve Email: privacy@theemiratesreserve.com
2. What is Personal Data?
Under the GDPR, “Personal Data” means any information relating to an identified or identifiable natural person (a ‘data subject’). This can include a name, an identification number, location data, an online identifier (like an IP address), or factors specific to the physical, physiological, genetic, mental, economic, cultural, or social identity of that person.
3. Principles for Processing Personal Data
We adhere to the principles relating to the processing of personal data set out in the GDPR, which require personal data to be:
- (a) Lawfulness, Fairness, and Transparency: Processed lawfully, fairly, and in a transparent manner.
- (b) Purpose Limitation: Collected for specified, explicit, and legitimate purposes and not further processed in a manner that is incompatible with those purposes.
- (c) Data Minimisation: Adequate, relevant, and limited to what is necessary in relation to the purposes for which they are processed.
- (d) Accuracy: Accurate and, where necessary, kept up to date.
- (e) Storage Limitation: Kept in a form which permits identification of data subjects for no longer than is necessary for the purposes for which the personal data are processed.
- (f) Integrity and Confidentiality: Processed in a manner that ensures appropriate security of the personal data, including protection against unauthorized or unlawful processing and against accidental loss, destruction, or damage.
4. Your Rights Under the GDPR
As a data subject within the EEA, you have the following rights concerning your personal data:
- The right to be informed: You have the right to be provided with clear, transparent, and easily understandable information about how we use your information and your rights.
- The right of access: You have the right to obtain access to your information (if we’re processing it).
- The right to rectification: You are entitled to have your information corrected if it’s inaccurate or incomplete.
- The right to erasure: Also known as ‘the right to be forgotten,’ this enables you to request the deletion or removal of your information where there’s no compelling reason for us to keep using it.
- The right to restrict processing: You have rights to ‘block’ or suppress further use of your information.
- The right to data portability: You have the right to obtain and reuse your personal data for your own purposes across different services.
- The right to object: You have the right to object to certain types of processing, including processing for direct marketing.
- Rights in relation to automated decision making and profiling: You have the right not to be subject to a decision based solely on automated processing.
To exercise any of these rights, please contact us at privacy@theemiratesreserve.com.
5. Lawful Basis for Processing Personal Data
We only process your personal data when we have a lawful basis to do so. Our lawful bases for processing include:
- Consent: Where you have given us clear consent for us to process your personal data for a specific purpose (e.g., subscribing to our newsletter).
- Legitimate Interests: Where the processing is necessary for our legitimate interests or the legitimate interests of a third party, unless there is a good reason to protect your personal data which overrides those legitimate interests (e.g., serving non-personalized ads, analyzing site traffic to improve user experience).
- Legal Obligation: Where the processing is necessary for us to comply with the law.
6. What Personal Data We Collect and How We Use It
We have detailed the types of data we collect and their purposes in our main Privacy Policy. For GDPR purposes, this primarily includes:
- Technical Data: IP address, browser type, device information, and operating system, collected via cookies and similar technologies for analytics and to ensure the security and functionality of our Site.
- Usage Data: Information about how you use our Site, such as pages visited and time spent on site, to help us improve our content and user experience.
- Contact Data: Your name and email address if you voluntarily provide it to us by subscribing to a newsletter or contacting us directly.
7. Cookies and Online Identifiers
We use cookies to enhance your experience on our Site. For users in the EEA, we will only place non-essential cookies (such as those used for analytics and advertising) on your device if you provide explicit consent through our cookie consent banner. You have full control to accept, reject, or customize your cookie preferences at any time.
8. Data Security and International Transfers
We are committed to protecting your data. We have implemented appropriate technical and organizational security measures to prevent your personal data from being accidentally lost, used, or accessed in an unauthorized way.
As our servers and third-party service providers (like Google Analytics and ad networks) may be located outside the EEA, your personal data may be transferred internationally. In such cases, we ensure that the transfer is lawful and that your data is protected by appropriate safeguards, such as the Standard Contractual Clauses (SCCs) approved by the European Commission.
9. Data Retention
We will only retain your personal data for as long as is necessary to fulfill the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements.
10. How to Make a Complaint
If you have any concerns about our use of your personal data, you can make a complaint to us at privacy@theemiratesreserve.com. You also have the right to lodge a complaint with your local data protection supervisory authority in the EEA member state of your habitual residence, place of work, or place of the alleged infringement.
11. Changes to This GDPR Policy
We may update this policy from time to time. We will notify you of any changes by posting the new policy on this page and updating the “Last Updated” date.