Legal

Privacy policy.

This policy explains what personal data LePrince Group collects, why we collect it, the lawful basis we rely on, how long we keep it, and the rights you have. It is aligned to the UAE Personal Data Protection Law (Federal Decree-Law No. 45 of 2021, the PDPL) and to the EU General Data Protection Regulation (GDPR) where it applies.

For the purposes of this policy, the data controller is LePrince Group, contactable at hugo@leprincegroup.com.

1. Who we are

LePrince Group is an AI-native, senior-led corporate finance and advisory firm in the UAE. For the purposes of the PDPL and GDPR, the data controller is LePrince Group. You can reach us using the contact details at the end of this policy.

2. What data we collect

We collect only what we need to respond to you and run our services:

  • Contact form details: your name, company, email address, WhatsApp number, the division you select, the free-text description of what you are weighing, and your consent choice.
  • Communications: the content of emails, WhatsApp messages, and notes you send us.
  • Engagement data: information you provide if you become a client, as set out in the relevant engagement letter.
  • Analytics and technical data: pages viewed, approximate location, device and browser type, referral source, and any campaign parameters (for example UTM tags), collected through cookies and similar technologies.

3. Why we use your data and the lawful basis

We use your data for the following purposes, each tied to a lawful basis under the PDPL and GDPR:

  • To respond to your enquiry and provide the services you ask for: performance of a contract, or steps taken at your request before entering a contract.
  • To send you a written reply and follow up on your enquiry: your consent, given when you submit the form, and our legitimate interest in responding to people who contact us.
  • To understand how the website is used and improve it: your consent for non-essential analytics cookies, and our legitimate interest in maintaining the site.
  • To meet legal, regulatory, and record-keeping obligations: compliance with a legal obligation.

Where we rely on consent, you can withdraw it at any time. Withdrawing consent does not affect processing carried out before you withdrew it.

4. Cookies and analytics

We use cookies and similar technologies to run the website and, with your consent, to measure how it is used. We use Google Analytics 4 for aggregate, privacy-respecting measurement. Essential cookies that are needed for the site to function do not require consent. You can control or block cookies through your browser settings, and blocking non-essential cookies will not stop you from using the site.

The cookies on this site are limited to those needed for it to function and Google Analytics 4 for aggregate measurement, which is set only with your consent. You can review and clear cookies at any time through your browser settings.

5. Who we share data with

We do not sell your personal data. We share it only with service providers who help us operate, such as our form and email providers, hosting, and analytics, and only to the extent they need it to provide their service to us. These providers act on our instructions under appropriate agreements. We may also disclose data where required by law or by a competent authority.

6. International transfers

Some of our providers process data outside the UAE. Where data is transferred internationally, we take steps to ensure an adequate level of protection consistent with the PDPL and, where the GDPR applies, with appropriate safeguards such as standard contractual clauses.

7. How long we keep your data

We keep enquiry data for as long as needed to respond and for a reasonable period afterwards in case you contact us again, then delete or anonymise it. Client and engagement records are kept for the period required by our legal and regulatory obligations. Analytics data is retained for the period set in our analytics configuration.

As a general guide, we keep enquiry data for up to 24 months after our last contact with you unless you ask us to delete it sooner, retain client and engagement records for the period required by law, and retain analytics data for up to 14 months.

8. How we protect your data

We apply technical and organisational measures appropriate to the sensitivity of the data, including access controls and encryption in transit. No system is perfectly secure, but we work to protect the information you give us.

9. Your rights

Subject to the PDPL and, where it applies, the GDPR, you have the right to:

  • Access the personal data we hold about you.
  • Ask us to correct data that is inaccurate or incomplete.
  • Ask us to delete your data where there is no overriding reason to keep it.
  • Object to or ask us to restrict certain processing.
  • Request a copy of your data in a portable format.
  • Withdraw consent at any time where we rely on it.
  • Lodge a complaint with the relevant supervisory authority.

To exercise any of these rights, contact us using the details below. We will respond within the timeframes required by applicable law.

10. Changes to this policy

We may update this policy from time to time. The current version is always the one published on this page, and the effective date will be shown when finalised.

This version is effective from June 2026.

11. Contact us

For any privacy question or to exercise your rights, email hugo@leprincegroup.com or message us on WhatsApp. If we appoint a data protection officer, their contact details will be published here.

Read our terms Contact us
Chat on WhatsApp