Last updated: May 2026
Privacy Policy
Prolina FZ-LLC ("Prolina", "we", "us") operates prolina.ae and is committed to protecting the personal data of everyone who interacts with our website and services. This Privacy Policy explains what data we collect, how we use it, and your rights under the UAE Federal Decree-Law No. 45 of 2021 on Personal Data Protection (UAE PDPL).
1. Who We Are
Prolina FZ-LLC is a company registered in the United Arab Emirates, operating from The Sustainable City (Biodome 10), Dubai, UAE. We cultivate and deliver fresh spirulina directly to consumers via subscription and one-time purchase.
Data Controller contact:
privacy@prolina.ae
+971 4 000 0000
2. Data We Collect
Information you provide
- Identity & contact: First name, last name, email address, phone number.
- Delivery & billing: Billing and shipping address (street, city, emirate, postal code).
- Account credentials: Username and encrypted password if you register an account.
- Order information: Product selections, quantity, frequency (subscription plan), special delivery instructions.
- Payment: Payment method type (e.g., credit card, cash on delivery). We do not store card numbers — payment is processed securely by our payment gateway provider.
- Communications: Messages sent to us via contact forms, email, or customer support channels.
Information collected automatically
- Cookies & session data: Shopping cart contents, session tokens, login state.
- Device & browsing data: IP address, browser type, pages visited, referral source (collected only with your consent via the cookie banner).
3. How We Use Your Data
| Purpose | Legal Basis |
|---|---|
| Processing and fulfilling orders | Contract performance |
| Managing your subscription and account | Contract performance |
| Sending order confirmation, dispatch, and delivery notifications | Contract performance |
| Customer service and responding to queries | Legitimate interest |
| Sending marketing emails about new products or offers | Consent (opt-in only; unsubscribe any time) |
| Improving our website and services | Legitimate interest (anonymised analytics only) |
| Complying with UAE legal and tax obligations | Legal obligation |
4. Sharing Your Data
We do not sell your personal data. We share it only with:
- Payment processors: To securely authorise transactions. They act as independent data processors under their own privacy terms.
- Delivery partners: Your name, phone number and delivery address are shared with our logistics partner solely to fulfil your order.
- Technology providers: Our website is powered by WordPress and WooCommerce. Hosting and data storage operates within the UAE and/or GCC region.
- Legal & regulatory bodies: Where required by UAE law, court order, or government authority.
5. Data Retention
- Order records: Retained for 5 years to comply with UAE Commercial Transactions Law.
- Account data: Retained while your account is active, then for a further 2 years after last activity.
- Marketing preferences: Removed immediately upon withdrawal of consent.
- Analytics cookies: Session or up to 12 months depending on cookie type.
6. Cookies
We use three categories of cookies:
- Strictly necessary: Shopping cart, checkout session, login state. These cannot be disabled as they are required for the website to function.
- Analytics (with consent): Anonymised usage data to understand how visitors use the site. Set only after you click "Accept All" in the cookie banner.
- Marketing: We do not use third-party advertising or tracking cookies.
You can manage cookie preferences at any time via your browser settings.
7. Your Rights Under the UAE PDPL
You have the right to:
- Access the personal data we hold about you.
- Request correction of inaccurate data.
- Request deletion of your data (subject to legal retention obligations).
- Withdraw consent for marketing at any time (unsubscribe link in every email).
- Object to processing based on legitimate interest.
To exercise any of these rights, email privacy@prolina.ae. We will respond within 15 business days.
8. Security
All data is transmitted over SSL/TLS encryption. Payment processing is handled by PCI-DSS-compliant third-party providers. We apply role-based access controls so that only authorised personnel can access personal data. No system is 100% secure; in the event of a data breach we will notify affected individuals and relevant authorities as required by UAE PDPL.
9. Children
Our service is not directed at individuals under the age of 18. We do not knowingly collect personal data from minors. If you believe we have inadvertently collected data from a minor, please contact us immediately.
10. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of significant changes by email or by displaying a prominent notice on the website. The "Last updated" date at the top of this page reflects the most recent revision.
11. Contact
For any privacy-related questions or requests:
Prolina FZ-LLC — Data Protection
Biodome 10, The Sustainable City, Dubai, UAE
privacy@prolina.ae