Privacy Policy
Clause 20.1Who we are
MATRIXVISTA - FZCO is the data controller for personal data processed through this website — meaning we decide why and how that data is handled. We are a marketing and advertising company registered in the Dubai free zone, United Arab Emirates.
- Legal name
- MATRIXVISTA - FZCO
- Registered address
- Premises No. 44526 - 001, IFZA Business Park (IFZA Properties), Dubai Digital Park, Dubai Silicon Oasis, Dubai, United Arab Emirates
- Contact for privacy requests
- info@matrixvistafzco.com
Clause 20.2What this policy covers
This policy covers the website matrixvistafzco.com and the email inbox it points to. It does not cover the work we do for clients under contract — that processing is governed by the written agreement for each engagement.
It helps to know what kind of website this is. It is a static informational site: there are no user accounts, no contact forms, no comment sections, no newsletters, and no e-commerce. The site itself sets no cookies and runs no analytics or advertising trackers — see our Cookie Policy for the full picture. In practice, the only way you give us personal data through this site is by choosing to email us.
Clause 20.3The data we process, and why
Two categories of data arise from this website. That is the complete list.
20.3.1 — Email correspondence. If you write to info@matrixvistafzco.com, we receive whatever you choose to include: typically your name, email address, company details, and the content of your message. We use this data to read, assess, and respond to your inquiry, and — if a conversation continues — to take the steps needed before entering into an agreement with you. We do not add you to marketing lists without your consent.
20.3.2 — Hosting and server logs. The site is served through our hosting and content-delivery provider, Cloudflare. Like virtually all web infrastructure, Cloudflare's systems automatically record technical data about requests to the site — such as IP address, browser type, requested pages, timestamps, and security signals — for the purposes of serving the site, keeping it secure, and defending against malicious traffic. We do not use this data to identify or profile individual visitors.
Equally important is what we do not collect: no analytics profiles, no advertising identifiers, no first-party cookies, no form submissions, no purchase data, and no data bought from third parties.
Clause 20.4Legal bases for processing
Where laws such as the EU/UK General Data Protection Regulation (GDPR) apply, we rely on the following legal bases:
- Legitimate interests — responding to business inquiries sent to us, and operating a secure, functioning website (including the server logs described in Clause 20.3.2).
- Steps prior to a contract — where your inquiry is about engaging our services, we process your correspondence to take steps at your request before entering into a contract.
- Consent — if we ever ask to use your data for anything beyond the above (for example, a mailing list), we will ask first, and you can withdraw consent at any time.
- Legal obligation — where we must retain or disclose information to comply with applicable law.
Clause 20.5How long we keep data
We keep email correspondence for as long as it is needed to handle your inquiry and, where relevant, to document a business relationship — after which it is deleted. If an inquiry goes nowhere, there is no reason for us to keep it long-term. Server and security logs are retained by our hosting provider for the short operational periods set by its systems.
Where applicable law requires us to keep certain records for a fixed period, we keep them for that period and no longer.
Clause 20.6Who we share data with
We do not sell personal data. We do not rent it, trade it, or share it for advertising purposes. The limited sharing that does occur falls into three categories:
- Service providers — the infrastructure that any email exchange requires: our hosting/CDN provider (Cloudflare) and our email service provider process data on our behalf, under their own contractual and security commitments, solely to deliver those services.
- Legal requirements — we may disclose information where required by law, regulation, or a valid request from a competent authority, or where necessary to establish, exercise, or defend legal claims.
- Business changes — if our company is ever reorganized or its assets transferred, correspondence records may transfer with it, subject to the same protections described here.
Clause 20.7International transfers
We are based in the United Arab Emirates, and our service providers operate global infrastructure. This means data connected to this website — including email you send us — may be processed in countries other than your own, including countries with different data-protection standards.
Where transfer rules under the GDPR or similar laws apply, we rely on the safeguards our providers make available, such as standard contractual clauses and equivalent mechanisms, and we limit what we process to the minimum this site actually needs.
Clause 20.8Your rights
Depending on where you live, data-protection law gives you rights over your personal data. We honor these requests regardless of jurisdiction wherever we reasonably can.
If you are in the EU, UK, or a jurisdiction with similar law (GDPR):
- the right to access the personal data we hold about you;
- the right to rectification of inaccurate data;
- the right to erasure ("right to be forgotten");
- the right to restrict or object to processing based on legitimate interests;
- the right to data portability;
- the right to withdraw consent at any time, where processing is based on consent;
- the right to lodge a complaint with your local supervisory authority.
If you are a California resident (CCPA/CPRA):
- the right to know what personal information we collect, use, and disclose;
- the right to delete personal information we hold about you;
- the right to correct inaccurate personal information;
- the right to opt out of the sale or sharing of personal information — noting that we do not sell or share personal information as those terms are defined in the CCPA;
- the right to non-discrimination for exercising any of these rights.
To exercise any right, email info@matrixvistafzco.com with the subject line "Privacy request". We may need to verify that you are the person the data relates to before acting. We respond within the timeframe required by the applicable law.
Clause 20.9Security
We take reasonable technical and organizational measures appropriate to the small amount of data this site involves: the site is served over HTTPS, access to our email is restricted and protected, and we keep no databases of visitor data because we collect none. No method of transmission or storage is perfectly secure, and we cannot guarantee absolute security — but we deliberately minimize what we hold so there is little to lose.
Clause 20.10Children's privacy
This website is a business-to-business site and is not directed at children. We do not knowingly collect personal data from anyone under 16 years of age. If you believe a child has sent us personal data, contact us at info@matrixvistafzco.com and we will delete it.
Clause 20.11Changes to this policy
If we change how this website handles data — for example, if we ever add a contact form or analytics — we will update this policy first and change the effective date at the top. The current version is always available at matrixvistafzco.com/privacy-policy. Significant changes will be flagged plainly on this page.
Clause 20.12How to contact us
Questions, concerns, or requests about privacy should go to:
- info@matrixvistafzco.com — subject line "Privacy request"
- Post
- MATRIXVISTA - FZCO, Premises No. 44526 - 001, IFZA Business Park (IFZA Properties), Dubai Digital Park, Dubai Silicon Oasis, Dubai, United Arab Emirates
Related documents: Terms of Service · Cookie Policy