Privacy policy

The controller of your personal data is ProsperityLab Technology Ltd (Registered Number 12992, Licence CL12992), a private company incorporated in the Dubai International Financial Centre (DIFC) under the Companies Law, DIFC Law No. 5 of 2018, and operating under the DIFC Innovation Hub programme. We hold a non-financial innovation licence and are not regulated by the Dubai Financial Services Authority (DFSA).

Registered address: Unit IH-00-01-01-OF-01, Level 1, Innovation One, Dubai International Financial Centre, Dubai, United Arab Emirates.

Data protection enquiries: hello@thinkingwealth.ai

We collect only the minimum personal data necessary to deliver or respond to the services you request. This includes:

Information you provide directly. When you submit a demo request or contact form, we collect your name, work email address, company name, job title, product interest, and any additional information you choose to include in the message field.

Information collected automatically. When you visit our website, we collect limited technical data through Vercel Analytics, which measures page performance metrics (such as page load times and web vitals). Vercel Analytics does not use cookies, does not track individual users, and does not collect personal identifiers. No advertising trackers, third-party analytics cookies, or social media pixels are present on this website.

We process your personal data for the following purposes:

Responding to enquiries and scheduling demos. When you submit a form, we use the data to respond to your enquiry, arrange a demonstration if requested, and follow up in a business context. The legal basis is your consent (by submitting the form) and our legitimate interest in managing business relationships.

Website operation and improvement. We use aggregated, non-personal performance data to maintain and improve the website. The legal basis is our legitimate interest in operating a functional, performant website.

Legal and regulatory compliance. We may process personal data where required to comply with applicable law, regulation, or legal process. The legal basis is compliance with a legal obligation.

We do not sell, rent, or trade your personal data to third parties. We do not use your personal data for automated decision-making or profiling.

We share personal data only where necessary and with appropriate safeguards:

Service providers. We use SendGrid (Twilio Inc.) to deliver form submission notifications internally. SendGrid processes your name and email address solely for the purpose of transmitting the email on our behalf and is bound by a data processing agreement.

Hosting. This website is hosted by Vercel Inc. Vercel processes technical request data (such as IP addresses in server logs) in accordance with its privacy policy and data processing addendum.

Where personal data is transferred outside the DIFC, we ensure that adequate safeguards are in place as required by the DP Law, including standard contractual clauses, adequacy assessments, or the recipient’s binding compliance with an adequate data protection framework.

This website uses only a single functional cookie (“sidebar_state”) to remember your user interface preferences. This cookie is strictly necessary for the operation of the website and does not track your activity or collect personal data.

We do not use advertising cookies, cross-site tracking pixels, or third-party analytics cookies. If this changes in the future, we will update this policy and implement a cookie consent mechanism before deploying any non-essential cookies.

Under the DIFC Data Protection Law No. 5 of 2020, you have the following rights in relation to your personal data:

Right of access. You may request confirmation of whether we process your personal data and, if so, request a copy of that data.

Right to rectification. You may request that we correct inaccurate or incomplete personal data.

Right to erasure. You may request deletion of your personal data where it is no longer necessary for the purposes for which it was collected, or where you withdraw consent.

Right to restrict processing. You may request that we restrict processing of your personal data in certain circumstances.

Right to data portability. Where technically feasible, you may request that your personal data be provided to you or transferred to another controller in a structured, commonly used, machine-readable format.

Right to object. You may object to processing based on our legitimate interests. We will cease processing unless we demonstrate compelling legitimate grounds.

Right to withdraw consent. Where processing is based on your consent, you may withdraw that consent at any time without affecting the lawfulness of prior processing.

To exercise any of these rights, contact us at hello@thinkingwealth.ai. We will respond within 30 days. There is no charge for exercising your rights.