Trade on tv is committed to protecting your personal data and complying with the General Data Protection Regulation (GDPR). This policy explains how we collect, process, and protect your data in accordance with GDPR requirements.
As a company processing the personal data of individuals in the European Union, we take our data protection responsibilities seriously and have implemented comprehensive measures to ensure compliance.
Under the General Data Protection Regulation (GDPR), you have several important rights regarding your personal data. We are committed to respecting these rights and making it easy for you to exercise them:
You have the right to request copies of your personal data that we hold. We will provide this information in a structured, commonly used, and machine-readable format.
You have the right to request that we correct any inaccurate or incomplete personal information we hold about you.
Also known as the 'right to be forgotten', you can request the deletion of your personal data when there is no compelling reason for its continued processing.
You have the right to request that we limit the way we use your personal data in certain circumstances.
You have the right to receive your personal data to use for your own purposes across different services.
You have the right to object to the processing of your personal data in certain circumstances, including for direct marketing purposes.
To exercise any of these rights, please contact our Data Protection Officer using the contact information provided at the end of this policy. We will respond to your request within one month.
To provide our services and ensure the best possible user experience, we collect and process the following categories of personal data:
Information you provide when creating an account, using our services, or contacting us
Information collected automatically through cookies and similar technologies
Information received from third-party service providers and partners
Under GDPR, we must have a valid legal basis to process your personal data. Depending on the specific context and purpose of data processing, we rely on one or more of the following legal bases:
Processing is necessary for the performance of a contract to which you are a party or in order to take steps at your request prior to entering into a contract.
You have given clear consent for us to process your personal data for a specific purpose.
Processing is necessary for compliance with a legal obligation to which we are subject.
Processing is necessary for our legitimate interests or the legitimate interests of a third party, unless there is a good reason to protect your personal data which overrides those legitimate interests.
We will always be transparent about the legal basis we rely on for each processing activity. If you have questions about the legal basis we use for specific types of data processing, please contact our Data Protection Officer.
We have implemented appropriate technical and organizational measures to ensure a level of security appropriate to the risk of processing your personal data. These measures include:
We use industry-standard encryption technologies to protect your data both in transit and at rest. This includes TLS/SSL for data transmission and strong encryption algorithms for stored data.
We implement strict access controls and authentication mechanisms to ensure only authorized personnel can access personal data. Access rights are regularly reviewed and updated.
We conduct regular security assessments, vulnerability scans, and penetration testing to identify and address potential security weaknesses in our systems.
We maintain regular backups of our systems and data to ensure we can recover from data loss incidents, while protecting the integrity and confidentiality of your information.
Our employees receive regular training on data protection and security best practices to ensure they understand their responsibilities when handling personal data.
We have established procedures to detect, report, and investigate personal data breaches, allowing us to respond timely and effectively to security incidents.
We are committed to maintaining the security of your personal data and continuously improving our security measures to address emerging threats and vulnerabilities. In the event of a data breach affecting your personal information, we will notify you and the relevant supervisory authority in accordance with GDPR requirements.
As a global service, we may transfer your personal data to countries outside the European Economic Area (EEA). When we do so, we ensure appropriate safeguards are in place to protect your information and comply with GDPR requirements.
We primarily rely on the European Commission's Standard Contractual Clauses, which provide appropriate safeguards for international data transfers. These contractual obligations ensure your personal data receives an adequate level of protection.
When applicable, we transfer data to countries recognized by the European Commission as providing adequate protection for personal data, such as Canada, Switzerland, and Japan.
For transfers within our corporate group, we may use Binding Corporate Rules approved by EU data protection authorities, establishing consistent data protection standards across our global operations.
Before transferring your data outside the EEA, we conduct transfer impact assessments to evaluate the level of protection in the destination country and implement supplementary measures when necessary to ensure your data remains protected.
If you would like more information about the specific mechanisms we use when transferring your personal data outside the EEA, please contact our Data Protection Officer.
We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, including meeting any legal, accounting, or reporting requirements.
Different types of personal data are subject to different retention periods based on the processing purpose and legal requirements. We regularly review our retention periods.
Prior to data deletion, when personal data is no longer necessary, we securely delete or anonymize it. Our deletion processes ensure data cannot be recovered after the retention period expires.
We retain data based on legitimate business needs, contractual obligations, and legal requirements. For example, financial transaction data may be kept longer to comply with tax and accounting regulations.
| Data Category | Retention Period | Reason |
|---|---|---|
| Account Information | Duration of your account plus 2 years | Providing service and account recovery support |
| Transaction Data | 7 years | Tax and financial regulations |
| Communication Records | 3 years after last contact | Customer support and dispute resolution |
| Usage Data | 2 years | Service improvement and analytics |
| Marketing Preferences | Until opt-out or consent withdrawn | To respect your communication preferences |
If you have any questions about this GDPR policy, wish to exercise your rights, or have concerns about how we process your personal data, please contact our Data Protection Officer:
Data Protection Officer
Trade on tv
KHALID SHABAN
Office No. 305-427
Meydan Road, Nad Al Sheba
Dubai, United Arab Emirates
+971 554 308 640
We will respond to all legitimate requests within one month. If your request is particularly complex or you have made several requests, it may occasionally take longer. In this case, we will notify you and keep you updated on progress.
You have the right to make a complaint at any time to the supervisory authority for data protection issues in your country. In the UK, this is the Information Commissioner's Office (ICO): https://ico.org.uk. However, we would appreciate the chance to deal with your concerns before you approach the supervisory authority, so please contact us in the first instance.
Our dedicated Data Protection team is here to assist with any GDPR-related inquiries or requests.
