Chat Now

Privacy Policy


Complysis Management Consultancies – FZCO & Complysis Ltd

Last updated: 15 February 2026

1. Introduction

This Privacy Policy explains how Complysis Management Consultancies – FZCO, a company incorporated and based in the United Arab Emirates, together with its branch and affiliated entity Complysis Ltd in Mauritius (collectively, “Complysis”, “we”, “us” or “our”), collects, uses, stores, and protects personal data obtained through www.complysis.com (the “Website”) and in the course of our business activities.

Complysis is committed to safeguarding personal data and implementing appropriate technical and organisational measures in line with applicable data protection laws and recognised security standards.

2. Scope of This Policy

This Privacy Policy applies to:

  • Visitors to our Website
  • Clients and prospective clients
  • Business partners and counterparties
  • Any individual communicating with us electronically or otherwise.

This Policy does not apply to third-party websites, platforms, or payment service providers linked to or integrated with our Website.

3. Personal Data We Collect

3.1 Information You Provide Directly

  • Full name
  • Email address
  • Telephone number
  • Company name and professional role
  • Information submitted via contact forms, emails, or enquiries

3.2 Information Collected Automatically

  • IP address
  • Browser and device information
  • Website usage data (pages visited, session duration, referrring URLs)

3.3 Payment Card Data (PCI-Specific Disclosure)

Complysis does not collect, store, retain, or process payment card data, including but not limited to:

  • Primary Account Numbers (PAN)
  • CVV/CVC codes
  • PINs
  • Magnetic stripe or chip data

Where payment-related services are involved, all card transactions are processed exclusively by PCI-DSS compliant third-party payment service providers. Complysis does not have access to full cardholder data at any time.

4. Purpose of Data Processing

Personal data is processed strictly for legitimate business purposes, including:

  • Responding to enquiries and communications
  • Providing and managing services
  • Client onboarding, verification, and due diligence (where applicable)
  • Compliance with legal and regulatory obligations
  • Website administration, analytics, and improvement

Complysis does not sell, rent, or trade personal data.

5. Legal Basis for Processing

Personal data is processed on one or more of the following lawful bases:

  • Consent
  • Performance of a contract or pre-contractual steps
  • Compliance with legal or regulatory obligations
  • Legitimate business interests, where such interests do not override individual rights

6. Data Protection – Mauritius

Where personal data is processed in or from Mauritius, Complysis complies with the Data Protection Act 2017, including principles relating to:

  • Lawful and fair processing
  • Purpose limitation
  • Data minimisation
  • Accuracy and retention
  • Security and confidentiality

Individuals may request access, correction, or deletion of personal data, subject to applicable legal limitations.

7. Data Sharing & Disclosure

Personal data may be shared strictly on a need-to-know basis with:

  • Internal staff and affiliated entities
  • Professional advisers (legal, compliance, auditors)
  • Regulators or authorities where required by law

All recipients are subject to appropriate confidentiality and security obligations.

8. International Data Transfers

Due to the cross-border nature of our operations, personal data may be transferred between the United Arab Emirates, Mauritius, and other jurisdictions.


Appropriate safeguards are implemented to ensure an adequate level of protection in accordance with applicable laws.

9. Data Retention

Personal data is retained only for as long as necessary to:

  • Fulfil the purpose for which it was collected
  • Comply with legal, regulatory, or contractual obligations

Data is securely deleted or anonymised once no longer required.

10. Data Security

Complysis implements appropriate technical and organisational security measures to protect
personal data against:

  • Unauthorised access
  • Loss, misuse, alteration, or disclosure


Security controls are designed in alignment with recognised industry standards, including where applicable the Payment Card Industry Data Security Standard (PCI DSS).

11. Data Breach & Incident Management

In the event of a personal data or security incident affecting sensitive information, Complysis will take appropriate remedial actions and notifications as required under applicable laws and contractual obligations.

12. Your Rights

Subject to applicable law, individuals may have the right to:

  • Request access to personal data
  • Request correction or updating
  • Request deletion where legally permissible
  • Object to certain types of processing

Requests may be submitted using the contact details below.

13. Cookies

The Website may use cookies or similar technologies to enhance functionality and user experience. Cookie preferences may be managed via browser settings.

14. Changes to This Policy

This Privacy Policy may be updated from time to time. Changes will be published on the Website with an updated revision date.

15. Contact

Complysis Management Consultancies – FZCO (UAE)
Complysis Ltd (Mauritius)
Website: www.complysis.com
Email: info@complysis.com