Country-specific privacy addendum for users and operations in United Arab Emirates
Last updated: January 15, 2026
This addendum supplements the ZhiYin global privacy policy with requirements specific to United Arab Emirates. Where this addendum conflicts with the global policy, this addendum takes precedence for users located in United Arab Emirates.
UAE Data Office (Federal), DIFC Commissioner of Data Protection, ADGM
Applicable legislation: Federal Decree-Law No. 45 of 2021 on the Protection of Personal Data
No general data localization requirement, but certain free zones (DIFC, ADGM) have specific requirements.
The UAE PDPL requires notifying the UAE Data Office and affected individuals of qualifying breaches without undue delay; free-zone regimes (DIFC, ADGM) require notification as soon as practicable.
ZhiYin aligns its incident-response process with these requirements and will notify the relevant regulatory authority and affected individuals within the timeframe required by applicable law.
Data must not be stored longer than necessary. Specific retention periods may vary by free zone regulations.
In addition to the rights outlined in our global privacy policy, users in United Arab Emirates have the following specific rights under local law:
For privacy inquiries related to your region, please contact our Data Protection Officer.
Email: privacy@talentbridge.com