Privacy Policy UAE
I wrote this Privacy Policy UAE to explain how we handle your data on etihadmappedout.com. I keep the language plain. I keep the promises clear. I want you to know what we collect, why we collect it, and how you stay in control.
I run this site from the United Arab Emirates. I focus on travel content inspired by Etihad’s home in Abu Dhabi. I welcome visitors from every country. I therefore follow the UAE Personal Data Protection Law. I also respect GDPR rules for EEA visitors and UK GDPR for UK visitors. I align with other regional rules where they apply. I keep this page updated as laws evolve.
I operate this site as an independent informational project. I do not represent Etihad Airways. I use their name only to describe a travel perspective. I never claim official affiliation. I never sell tickets. I never process bookings.
I collect only what I need to provide and improve the site. I avoid intrusive tracking. I avoid unnecessary retention. I avoid selling data. I prefer privacy by design in every decision.
Who we are
This website is Etihad Mapped Out. It publishes UAE travel guidance with an Etihad-inspired slant. It is accessible at etihadmappedout.com. You can reach the site administrator by email at the contact address shown on the Contact page. I respond to every rights request. I also respond to basic privacy questions. I will verify identity before I act on any sensitive request.
Scope of this policy
This policy covers personal data processed on this website. It applies when you browse pages, submit a message, or use any form. It does not cover third-party websites I link to. Those sites have their own policies. Please read them before you share information there.
What data I collect
I collect data in two simple groups. The first group includes technical data your browser sends. This covers IP address, device type, browser version, and basic usage timings. This data helps me secure the site. It helps me diagnose errors. It helps me improve performance. The second group includes data you choose to give. This includes your name and email if you send a message. It also includes any text you submit through a form.
I do not collect sensitive data by default. I never ask for passport details. I never ask for payment information. Please do not send sensitive data to me. If you do, I will delete it as soon as I find it.
Cookies and similar tech
This site uses minimal cookies to run core features. I may set a session cookie to maintain basic preferences. I may use an analytics cookie to understand page performance. I avoid invasive cross-site tracking. I avoid personal profiling. You can block non-essential cookies in your browser at any time. The site will still load. Some features may degrade slightly.
Analytics
I measure traffic to understand what content helps travellers most. I prefer privacy-centric analytics. I aggregate results where possible. I never build personal browsing profiles. I never sell analytics data. I use analytics only to maintain and improve content quality. I also use it to detect abuse and unusual traffic patterns.
Lawful bases for processing
I process technical data to run and protect the site. I rely on legitimate interests for that purpose. I process contact form data to reply to messages. I rely on consent when you submit a form. I may rely on legal obligation for records I must keep to secure the site. I balance my interests against your rights. I minimise data. I reduce retention periods. I provide easy opt-out paths.
How I use your data
I use technical data to deliver pages reliably and quickly. I use it to defend against attacks. I use contact data to reply to you. I use aggregated analytics to guide editorial priorities. I may produce statistics to monitor growth. I never publish personal information. I never sell lists. I never rent lists. I never swap lists.
Sharing your data
I keep sharing narrow and purposeful. I use hosting providers to deliver the site. I use email providers to receive messages. These providers act as processors. They must follow my instructions. They must protect your data. I may share data with regulators or law enforcement if the law requires it. I do not share data with advertisers. I do not share data with data brokers.
International transfers
I host the site with reputable providers. Data may move across borders when servers or caches sit outside the UAE. I use providers that apply strong security and industry standard safeguards. For EEA and UK visitors, I rely on appropriate transfer mechanisms. I keep transfers minimal. I never move data without a clear need.
Security
I use HTTPS to encrypt data in transit. I harden the server and the CMS. I apply updates promptly. I restrict admin access. I monitor for unusual activity. No method is perfect. I will act fast if I detect a breach. I will notify affected users when the law requires it. I will document the event and lessons learned.
Data retention
I hold technical logs for a short period. I keep them long enough to troubleshoot issues and defend the site. I hold contact messages only as long as needed to handle your enquiry. I then archive or delete them. I prune backups on a rolling schedule. I keep retention short by default. I honour deletion requests unless a law requires a longer hold.
Your rights
You can ask me to confirm whether I process your data. You can request a copy of your data. You can ask me to correct inaccurate data. You can request deletion of data I no longer need. You can ask me to restrict processing in defined cases. You can object to processing based on legitimate interests. You can withdraw consent at any time where I rely on consent. I will respond within the time required by law. I will explain any refusal where a law blocks deletion.
How to exercise your rights
Send a request to the email published on the Contact page. Describe your request clearly. Include the email address you used on the site. I will verify identity before I act. I may ask for reasonable extra information to ensure your protection. I will then confirm actions taken. I will keep a short record of the request for compliance.
Children’s privacy
This site targets adult travellers and professionals. I do not knowingly collect data from children. If you believe a child has sent data here, please contact me. I will delete it promptly.
Third-party links and content
I sometimes link to airline resources, tourism boards, or event guides. Those sites run their own policies and cookies. Please review those policies before you share any information there. My links exist for context only. I do not endorse unrelated data practices.
Advertising and affiliates
I do not run behavioural ads. I do not run retargeting campaigns. I may mention services or attractions for context. I mark any commercial relationships clearly if they exist in the future. I will not bury disclosures. I will not hide incentives.
Automated decision-making
This site does not make automated decisions about you. I do not profile individual visitors. I do not assign scores. I do not gate content based on profiles.
Do-Not-Track signals
Many browsers offer Do-Not-Track signals. There is no global standard that providers must honour. I keep tracking minimal regardless. I intend to respect future standards when they stabilise. I will update this policy when such support becomes practical.
Contact details
Please contact the site administrator using the email on the Contact page. Use this email for privacy enquiries and rights requests. I read every message. I respond as soon as possible. You can also raise a complaint with your local regulator. UAE visitors can contact the UAE Data Office. EEA and UK visitors can contact their national data protection authority.
Changes to this policy
I update this page as laws and practices change. I record the effective date at the top of the page. I encourage you to review the policy from time to time. I will post a clear notice on the site when changes are significant. I will not reduce your rights without telling you.
A note on Etihad references
I discuss travel from an Etihad-inspired perspective. I use public facts and personal observations. I do not represent Etihad. I do not process their customers’ data. I only process data that relates to this website and its audience.
A short word on fairness
I believe privacy builds trust. I collect only what I need. I keep it only as long as necessary. I secure it with care and modern practices. I keep my promises on this page. If I fall short, I want to know. Please tell me so I can fix it.