Growz (“we,” “us,” “our”) is a Dubai-based SaaS provider of AI automation and business intelligence solutions. We respect your privacy and comply with applicable data protection laws, including the UAE’s Personal Data Protection Law (PDPL) and the EU’s GDPR. This policy explains what personal data we collect on our website, how we use it, and your rights
We collect personal data that you voluntarily provide or that is automatically generated when you visit our website:
Contact form and inquiries: Information you submit via our contact forms, such as your name, company name, email address, phone number, and message content
Newsletter sign-ups: Information when you subscribe to our newsletter or updates, typically your name and email address
Cookies and usage data : Technical and usage data collected automatically via cookies or similar tracking technologies. This includes your IP address, browser and device details, and pages you visit on our site[4][5]. Google Analytics, for example, uses cookies to collect information about your visit (e.g. pages viewed, session duration) and reports site usage without identifying you personally
Other data: Any additional information you provide to us (e.g. through surveys or feedback forms).
Growz uses your personal data only for legitimate business purposes:
Responding to inquiries: We use contact form and sign-up data to reply to your questions, requests, or feedback[7]. For example, we may email you information you requested or otherwise communicate about our services.
Marketing communications: With your consent, we may send you promotional emails about our services or industry updates. You can withdraw consent and opt out of marketing at any time.
Website improvement and analytics: We analyze website usage data (via tools like Google Analytics) to understand how visitors use our site and to improve its content and performance[6][5]. These analytics cookies do not identify individual users.
Security, compliance, and legal purposes: We use data to maintain the security of our systems (e.g. fraud detection, enforcing access controls) and to comply with legal obligations (e.g. record-keeping, responding to legal requests). UAE law (PDPL) requires us to implement appropriate technical measures to protect data[9].
We use cookies and similar technologies on our site. As noted, “Cookies are text files placed on your computer to collect standard Internet log information and visitor behavior information”[4]. We use:
Essential cookies: These enable basic site functions (session management, preferences).
Analytics cookies: We use cookies (e.g. via Google Analytics) to track how you navigate our site. This helps us improve the site and provide relevant content[5][6]. These analytics cookies do not personally identify you.
Advertising/marketing cookies (if any): We may use cookies to help us deliver relevant marketing or to understand advertising effectiveness. We do not sell or share personal data with advertisers.
You can manage or disable cookies through your browser settings, though some site features may not function without cookies. For more information on cookies and how to disable them, see allaboutcookies.org.
Growz takes data security seriously. Under UAE law, we must put in place “sufficient technical and [organizational] measures to protect and secure personal data, preserve its confidentiality and privacy”[9]. We follow best practices such as network and data encryption, regular security assessments, and strict access controls. All Growz personnel are trained on data protection, and we use contractual and technical safeguards to ensure confidentiality of sensitive information. Although our website does not handle client platform data, we treat any confidential client information (e.g. business, sales, or operational data) with strict confidentiality. Such information is stored securely and accessed only by authorized personnel under confidentiality agreements. In short, we protect all personal and client data with industry-standard security measures[9].
Your data may be stored or processed outside the UAE (for example, in the US via Google Analytics or cloud services). Both the UAE PDPL and GDPR require that data transferred abroad be protected. PDPL “imposes limitations on the international transfer of personal data” outside the UAE and requires that transfers only occur to countries with approved adequate protections[10]. We ensure that any international transfer of personal data complies with applicable laws. This may involve relying on adequacy decisions (for jurisdictions deemed safe by regulators) or legal mechanisms such as standard contractual clauses or equivalent safeguards.
For visitors in the EU, we process personal data only on lawful GDPR grounds[11]. In most cases, we rely on:
Consent: When you sign up for newsletters or marketing communications, we obtain your consent. You may withdraw consent at any time.
Legitimate interests: We may process your contact and usage data for legitimate business interests, such as operating and improving our website and performing analytics, provided this does not override your rights[11].
Contractual necessity: If you become a client or otherwise enter into an agreement with us, some data processing may be necessary to perform our contract.
Legal obligation: In some cases, we process data to comply with legal or regulatory requirements.
You have certain rights regarding your personal data under both the GDPR and UAE PDPL. These include:
Right of access: You can request copies of the personal data we hold about you[12].
Right to rectification: You can ask us to correct or update any inaccurate or incomplete data[12].
Right to erasure (“right to be forgotten”): You can request deletion of your personal data under applicable conditions[12].
Right to restrict processing: You can request that we limit how we use your data under certain circumstances[12].
Right to data portability: You may request a copy of your data in a usable format so you can transfer it elsewhere[12].
Right to object: You can object to our processing of your data (for example, for direct marketing) at any time[12].
Consent withdrawal: If you provided consent for any processing (e.g. newsletter), you may withdraw it at any time.
Right to lodge complaint: You have the right to lodge a complaint with a data protection authority in your jurisdiction if you believe we have not handled your data properly.
To exercise any of these rights, or for any privacy-related inquiries, please contact us (see below). We will respond within the timeframes required by law.
We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. We will post the updated policy on our website with the “Last updated” date. Please check this page periodically.