We know that a supportive business environment is key to helping your company thrive. Learn more about what DIFC has to offer, from easy set-up processes to an enabling infrastructure and a variety of office spaces.
The DIFC is more than just a world-class financial centre. Explore the district beyond the office, from a carefully curated collection of retailers, to a diverse range of art galleries and some of the city’s best restaurants.
Stay up to date with the latest news, announcements and insights from across the Centre by visiting our Newsroom.
Dubai International Financial Centre (DIFC) is one of the world’s most advanced financial centres, and the leading financial hub for the Middle East, Africa and South Asia (MEASA), which comprises 72 countries with an approximate population of 3 billion and a nominal GDP of US$ 7.7 trillion.
Log-in now to access a number of services available to our clients and visitors at the click of a button.
The Commissioner of Data Protection is responsible for administering the Data Protection Law.
The Data Controller must notify the Commissioner of Data Protection when it is:
Processing Sensitive Personal Data; and/or transferring Personal Data outside the DIFC to a jurisdiction that does not have adequate levels of data protection.
The data protection legislation gives certain rights to Data Subjects concerning their Personal Data and Sensitive Personal Data. Generally, a Data Subject has the right to access any Personal Data that is kept about them.
If the Personal Data Processed by the Data Controller is inaccurate, then the Data Subject can request the Data Controller to take action to rectify, block or destroy the inaccurate data. However, there are certain circumstances, or exemptions, where it is legal for a Data Controller not to have to notify a Data Subject that Personal Data is being Processed. For example, where Personal Data is being released to a legitimate authority to comply with anti money laundering obligations.
A Data Subject can object on reasonable grounds to the Processing of their Personal Data, and request their Personal Data not be disclosed to third parties. This may include circumstances where an individual requests a Data Controller to cease Processing Personal Data for the purposes of direct marketing. If the Data Controller objects to the request, the Data Subject may file a complaint with the Commissioner of Data Protection at DIFC who may refer the matter to mediation.
The Commissioner of Data Protection is responsible for administering the Data Protection Law.
The Data Controller must notify the Commissioner of Data Protection when it is:
Processing Sensitive Personal Data; and/or transferring Personal Data outside the DIFC to a jurisdiction that does not have adequate levels of data protection.
The data protection legislation gives certain rights to Data Subjects concerning their Personal Data and Sensitive Personal Data. Generally, a Data Subject has the right to access any Personal Data that is kept about them.
If the Personal Data Processed by the Data Controller is inaccurate, then the Data Subject can request the Data Controller to take action to rectify, block or destroy the inaccurate data. However, there are certain circumstances, or exemptions, where it is legal for a Data Controller not to have to notify a Data Subject that Personal Data is being Processed. For example, where Personal Data is being released to a legitimate authority to comply with anti money laundering obligations.
A Data Subject can object on reasonable grounds to the Processing of their Personal Data, and request their Personal Data not be disclosed to third parties. This may include circumstances where an individual requests a Data Controller to cease Processing Personal Data for the purposes of direct marketing. If the Data Controller objects to the request, the Data Subject may file a complaint with the Commissioner of Data Protection at DIFC who may refer the matter to mediation.
Personal Data is any information relating to an identified natural person or Identifiable Natural Person. For example, Personal Data may include an individual’s name, age, home address, race, sexual orientation, income, blood type, marital status, education, and employment information.
Yes, click here to view schedule of fees.
DEALING WITH THE DATA SUBJECT
A Data Controller must securely keep any Personal Data it collects and process it fairly and lawfully. At or before the time Personal Data is collected from a Data Subject, a Data Controller should take reasonable steps to ensure that the Data Subject is aware of:
provided.
If a Data Controller intends to Process the Personal Data collected from a Data Subject, it is suggested that when the Data Controller collects that Personal Data, the Data Controller obtain the Data Subject’s written consent to such Processing at the same time.
The Data Controller should consider the following for all Personal Data:
The Data Controller should consider the following matters:
Subject?
Before Personal Data is transferred outside the DIFC the Data Controller should consider the following matters:
Personal Data is any information relating to an identified natural person or Identifiable Natural Person. For example, Personal Data may include an individual’s name, age, home address, race, sexual orientation, income, blood type, marital status, education, and employment information.
Yes, click here to view schedule of fees.
DEALING WITH THE DATA SUBJECT
A Data Controller must securely keep any Personal Data it collects and process it fairly and lawfully. At or before the time Personal Data is collected from a Data Subject, a Data Controller should take reasonable steps to ensure that the Data Subject is aware of:
provided.
If a Data Controller intends to Process the Personal Data collected from a Data Subject, it is suggested that when the Data Controller collects that Personal Data, the Data Controller obtain the Data Subject’s written consent to such Processing at the same time.
The Data Controller should consider the following for all Personal Data:
The Data Controller should consider the following matters:
Subject?
Before Personal Data is transferred outside the DIFC the Data Controller should consider the following matters:
Scan the QR code for
direct download
Scan the QR code for
direct download
For better web experience, please use the website in portrait mode