PRIVACY POLICY

Privacy Policy

Tribune for Emirati voices and civic accountability

Privacy Policy — Rimal Wire

Last updated: May 11, 2026

Introduction
Rimal Wire (rimalwire.com) is a regional online tribune for news and opinion. We respect your privacy and process personal data in accordance with applicable data-protection laws, including the EU General Data Protection Regulation (GDPR) where it applies to individuals in the European Economic Area (EEA) and the UK. This policy explains what data we collect, why we collect it, how long we keep it, your rights, and how to contact us about privacy matters.

Data controller
Rimal Wire — Dubai, United Arab Emirates
For privacy enquiries or to exercise your data-protection rights, please use our contact form at /contact/ or email [email protected].

What personal data we collect and why we collect it
We only collect the personal data necessary to deliver the services of our site and to run Rimal Wire as a news and opinion platform. Common categories of personal data we process include:

  • Account and profile information: name, email address, username, and any profile details you provide when registering or commenting. Purpose: to manage your account and publish user contributions. Lawful basis: performance of a contract and/or legitimate interests (operating the platform).
  • Contact form submissions and email correspondence: name, email address, message contents. Purpose: to respond to enquiries and requests. Lawful basis: legitimate interests and/or consent where you opt in.
  • Comments and user-generated content: any personal data you include in comments or posts. Purpose: to publish and moderate contributions. Lawful basis: performance of a contract and legitimate interests.
  • Analytics and technical data: IP address (partially masked where possible), device and browser information, pages visited, referral data, and anonymised usage statistics. Purpose: site performance, security, and improvement. Lawful basis: legitimate interests (site security, analytics) and, where required by law, consent.
  • Cookies and similar technologies: see the Cookies section below. Lawful basis: consent for non-essential cookies; legitimate interests for essential session cookies.

We do not sell personal information.

Lawful bases for processing (GDPR)
Where the GDPR applies, we rely on one or more of the following lawful bases depending on the processing activity:

  • Consent: where you have explicitly chosen to give consent (for example, non-essential cookies or optional newsletters).
  • Contract: to provide services you have requested (for example, account management).
  • Legitimate interests: for purposes such as site security, fraud prevention, analytics, and publishing user-generated content, provided those interests do not override your rights and freedoms.
  • Legal obligation: where we must process data to comply with legal obligations.

Retention of personal data
We retain personal data only for as long as necessary for the purposes set out above, or as required by law. Typical retention periods include:

  • Account information and profile data: retained for as long as the account remains active and up to 1 year after account deletion for operational backups and fraud prevention.
  • Comments and user-generated content: retained while published; if removed, retained for up to 3 years for abuse prevention and record-keeping, unless you request earlier deletion.
  • Contact form submissions and email correspondence: retained for 3 years to allow follow-up and to maintain a record of communications.
  • Analytics and aggregated usage data: aggregated and anonymised data may be retained indefinitely. Raw analytics logs are retained for up to 2 years.
  • Cookies: session cookies expire at end of session; persistent cookies have varying lifetimes (commonly up to 24 months), depending on purpose.

You may request deletion or restriction of your personal data (see Your rights below). We may keep certain information where required by law or where necessary for legitimate business purposes such as preventing fraud.

Cookies and similar technologies
We use cookies and similar technologies to operate the site and improve your experience. Categories we use include:

  • Strictly necessary cookies: enable core site functionality (session management, authentication). These do not require consent.
  • Performance and analytics cookies: collect anonymous or pseudonymous usage data. These require consent where applicable.
  • Functionality cookies: remember preferences and settings.
  • Advertising and targeting cookies: used by third parties to deliver relevant ads and measure effectiveness. These require consent.

You can manage cookie preferences through our cookie banner and via your browser settings. Blocking certain cookies may limit functionality. For detailed instructions on disabling cookies, consult your browser’s help resources. For privacy requests related to cookies, use the /contact/ form or email [email protected].

International transfers and safeguards
Rimal Wire may use service providers and store data in jurisdictions outside the UAE and the EEA. Where personal data is transferred internationally, we implement appropriate safeguards such as:

  • Transfers to countries with an adequacy decision by the European Commission or equivalent;
  • Standard Contractual Clauses (SCCs) adopted by the European Commission or other legally recognised contractual protections;
  • Technical and organisational measures (encryption, access controls).

If you would like information about the specific safeguards used for a specific transfer, please contact us via /contact/ or [email protected].

Third-party services and embedded content
We use third-party service providers to host the site, provide analytics, deliver email, and support advertising and social-media features. These third parties may process personal data on our behalf as processors or independent controllers. Examples include hosting providers, analytics providers, email service providers, content-delivery networks, advertising networks, and social-media platforms. We take care to select providers that implement appropriate security and privacy measures.

Automated decision-making and profiling
We do not carry out automated decision-making, including profiling, that produces legal or similarly significant effects for individuals.

Your rights (if the GDPR applies)
If you are located in the EEA or the UK, you have certain rights regarding your personal data:

  • Right of access: obtain a copy of personal data we hold about you.
  • Right to rectification: correct inaccurate or incomplete data.
  • Right to erasure: request deletion of personal data under certain circumstances.
  • Right to restrict processing: request limitation of processing in certain situations.
  • Right to object: object to processing based on legitimate interests or direct marketing.
  • Right to data portability: receive personal data in a structured, commonly used, machine-readable format where processing is based on consent or contract.
  • Right to withdraw consent: withdraw consent for processing at any time without affecting processing lawfully carried out before withdrawal.
  • Right to lodge a complaint with a supervisory authority: you may contact the relevant data-protection authority in your EU/EEA Member State or the UK.

To exercise your rights, please submit a request via our /contact/ form or email [email protected]. We will verify your identity before responding and aim to respond within one month. Complex requests may require up to two further months; we will inform you if an extension is necessary.

Security
We implement reasonable technical and organisational measures to protect personal data from loss, misuse, unauthorised access, disclosure, alteration, and destruction. No system is completely secure; if a data breach occurs that poses a risk to your rights and freedoms, we will notify you and the relevant supervisory authority as required by law.

Children
Our site is not aimed at children under 16. We do not knowingly collect personal data from children under 16. If you believe we have collected data about a child, please contact us at /contact/ or [email protected] so we can take appropriate steps.

Changes to this policy
We may update this policy from time to time. Material changes will be posted here with an updated “Last updated” date.

Contact us
For privacy enquiries, data-access requests, or complaints, please use our contact form at /contact/ or email [email protected]. You may also contact the supervisory authority in your jurisdiction if you remain dissatisfied after contacting us.