Book a consultation

Privacy

Privacy Policy

Consorata Financial Services CO. L.L.C (“Consorata”, “we”, “our”, or “us”) is committed to protecting your privacy. This Privacy Policy explains what personal data we collect, why we collect it, how we use it, and the rights you have under the UAE Personal Data Protection Law (Federal Decree-Law No. 45 of 2021) and the EU General Data Protection Regulation (GDPR) where it applies.

Definitions

  • Company — Consorata Financial Services CO. L.L.C, registered office: Office 304-72, Parfait Business Center, Mohammed Bin Rashed Establishment for SME Development, Business Village, Port Saeed, Dubai, UAE, PO BOX 45195. Visitor address (by appointment): Al Habtoor Business Tower, Dubai Marina, Dubai, UAE.
  • Country of operation — United Arab Emirates.
  • Personal data — any information that, directly or in combination with other information, identifies a natural person (name, email, phone, IP address, identification documents, financial records, etc.).
  • Service — the consorata.ae website, the news and insights surfaces, the booking flow, and the professional accounting, audit, tax, and advisory services we deliver under engagement letters.
  • Cookie — a small piece of data stored by your browser to identify your session, remember preferences, or measure how the site is used.

Information we collect

Information you give us. When you submit a contact form, request a consultation, subscribe to the newsletter, or engage us for a professional service, we collect what you provide: name, email, phone (optional on the contact form, required for engagements), company / trade-licence details, and the documents required for the specific engagement (financial records, identification documents, intercompany agreements, beneficial-ownership data, banking documents where required for AML/CFT or audit).

Information collected automatically. When you visit consorata.ae we receive your IP address, browser and device characteristics, operating system, referring URL, language preference, and timestamps. This is used for security, fraud prevention, and aggregate analytics — not to identify you personally.

Personnel and applicants. If you apply to work with Consorata, we collect the information you voluntarily provide for HR purposes: CV, contact details, references, and any documents required for employment screening.

How we use it

  • To respond to your enquiry and to deliver the engagement you contracted us for.
  • To meet our regulatory obligations — AML/CFT customer due diligence, FATCA / CRS reporting where applicable, UAE Corporate Tax and VAT compliance, audit working-paper retention.
  • To improve the website — aggregate, privacy-first analytics about which pages are read, which articles are useful, and where visitors drop off.
  • To send you communications you have explicitly opted into — the monthly newsletter, news alerts on topics you selected, or engagement-specific updates.

How long we keep it

Engagement records: seven years from the end of the relevant tax period, per UAE Corporate Tax record-retention rules (Federal Decree-Law 47/2022 art. 56). Real- estate-related records and certain regulated-sector records: longer per the same rules.

Contact-form submissions that do not become engagements: twelve months, then deleted.

Newsletter subscribers: until you unsubscribe (one-click link in every email).

Personnel files for unsuccessful applicants: twelve months, unless you ask us to keep your CV on file longer.

Cookies and analytics

See our separate Cookie Policy for the full list of cookies and their purposes. In summary:

  • Essential cookies — Cloudflare bot management and security; required for the site to load. No tracking purpose.
  • Analytics cookies — Yandex Metrica + Cloudflare Web Analytics; aggregate page-view data; off by default for EU/EEA visitors and only set if you accept via the cookie banner.
  • Marketing cookies — Google Ads remarketing and ad-performance measurement; off by default and only set if you accept the marketing category.

We implement Google Consent Mode v2 so that the default state for any EU/EEA visitor is “denied” for analytics, advertising storage, ad-user-data, and ad- personalisation. Tags adjust automatically based on your choice in the cookie banner. You can change your choice at any time via the “Cookie preferences” link in the site footer.

Third-party services

We use the following third parties to deliver and operate the Service. Each operates under their own privacy policy, which governs the data they receive:

  • Cloudflare — hosting, CDN, DDoS protection, bot management.
  • Yandex Metrica — aggregate web analytics (Russian-speaking audience reporting).
  • Google Ads — campaign measurement and remarketing (only with your marketing-cookie consent).
  • Calendly — consultation booking. When you book, your name, email, and meeting time are shared with Calendly.
  • Email and document infrastructure — for engagement-related communications and document exchange. Listed in your engagement letter.

We do not sell your personal data. We do not share it with third parties for their own marketing purposes.

Sale of business

We reserve the right to transfer information to a third party in the event of a sale, merger, or other transfer of substantially all of the assets of Consorata, provided that the third party agrees to adhere to the terms of this Privacy Policy.

Governing law

This Privacy Policy is governed by the laws of the United Arab Emirates without regard to its conflict-of-laws provisions. You consent to the exclusive jurisdiction of the courts of Dubai for any action or dispute arising under or in connection with this Privacy Policy.

Your rights

Under the UAE PDPL and the EU GDPR (where it applies to you), you have the right to:

  • access the personal data we hold about you;
  • correct inaccurate or incomplete data;
  • request erasure (subject to our regulatory retention obligations — engagement records retained for seven years cannot be deleted on request);
  • restrict processing;
  • portability — receive your data in a structured, commonly used, machine-readable format;
  • object to processing where we rely on legitimate interest;
  • withdraw consent at any time, where processing is based on consent.

To exercise any of these rights, email info@consorata.ae. We respond within 30 days. If you are not satisfied with our response, you may complain to the UAE Data Office or, if GDPR applies, to your local supervisory authority in the EU/EEA.

Children’s privacy

We do not knowingly collect personal data from anyone under the age of 13. If you are a parent or guardian and you believe your child has provided us with personal data, please contact us — we will delete it.

Links to other websites

consorata.ae may contain links to third-party websites we do not operate or control. This Privacy Policy does not apply to those sites. Please consult their own privacy policies before providing personal data.

Changes to this Privacy Policy

We may update this Privacy Policy to reflect changes in our service, the law, or our practices. Material changes will be communicated through the website (and, where you have an active engagement, by email) at least 30 days before they take effect.

Contact

Questions about this Privacy Policy or how we handle your data: info@consorata.ae.

Last updated: 25 April 2026.