Money Protects Money Protects
Money Protects
Try OptimizerAI
English عربي
  1. MoneyProtects
  2. Privacy Policy

Privacy Policy

Privacy Policy

Last Updated on: 29 May 2026

Effective Date: 1 January 2026  |  Last Updated: May 2026  |  DIFC DP Law No. 5 of 2020

1. Introduction & Identity of the Controller

Money Protects Capital Limited ("MPCL", "we", "us", "our") is a Category 3C firm regulated by the Dubai Financial Services Authority (DFSA), incorporated in the Dubai International Financial Centre (DIFC), Dubai, United Arab Emirates.

As the Data Controller, we are committed to protecting your personal data in accordance with the DIFC Data Protection Law No. 5 of 2020 (as amended by DIFC Law No. 2 of 2022) and all applicable DFSA conduct of business requirements.

This Privacy Policy applies to all visitors and users of moneyprotects.com and any MPCL-operated digital platforms, including the Fixed EMI Optimizer and consultation booking system.

Questions regarding this Policy or your personal data should be directed to: dataprotection@moneyprotects.com

2. What Personal Data We Collect

We collect and process the following categories of personal data:

  • Identity Data: Full name, nationality, Emirates ID or passport number (for KYC/AML compliance)
  • Contact Data: Email address, phone number, postal address
  • Financial Data: Mortgage details, property valuation, investment objectives, income and net worth indicators (where required for product suitability)
  • Technical Data: IP address, browser type, device identifiers, pages visited, time and duration of visits (via cookies — see our Cookie Policy)
  • Communications Data: Records of correspondence with MPCL including emails, consultation notes, and chat interactions with the ARCUS AI platform
  • Consultation Data: Meeting bookings, attendance records, product interests expressed during consultations

3. How We Collect Your Personal Data

We collect personal data when you:

  • Visit or interact with our Website
  • Submit an enquiry via our Contact form or ARCUS AI
  • Book a free consultation via our consultation scheduling system
  • Download our product brochure
  • Correspond with us by email or telephone
  • Become a client of MPCL (subject to a separate Client Agreement)

We may also receive personal data about you from third parties including credit reference agencies, KYC verification providers, and our regulated business partners.

4. Legal Basis for Processing

Under the DIFC DP Law, we rely on the following lawful bases:

PurposeLegal Basis (Art. 10)
Providing pre-contractual information and financial servicesArt. 10(1)(b) — Contractual necessity
AML / KYC compliance and regulatory reporting to the DFSAArt. 10(1)(c) — Legal obligation
Managing consultations and client communicationsArt. 10(1)(b) — Contractual necessity
Website analytics and service improvementArt. 10(1)(f) — Legitimate interests
Marketing communications (with opt-out)Art. 10(1)(a) — Consent
Cookie placement (non-essential)Art. 10(1)(a) — Consent

5. How We Use Your Personal Data

  • To assess your suitability for our regulated financial products (MESP, Double Rental™, Fixed EMI for Life™)
  • To conduct AML, KYC and investor suitability assessments as required by DFSA Rules
  • To schedule, manage and follow up on consultation bookings
  • To respond to enquiries submitted via our Website or ARCUS AI
  • To send you relevant communications about our services (with the ability to opt out at any time)
  • To improve our Website and digital platforms through anonymised analytics
  • To comply with our regulatory obligations under DFSA and UAE law

6. Sharing Your Personal Data

We do not sell your personal data to third parties. We may share your data with:

  • Regulatory bodies: DFSA, DIFC Commissioner of Data Protection, and UAE Financial Intelligence Unit, where required by law
  • Technology service providers: Microsoft (Teams — meeting infrastructure), ElevenLabs (AI assistant), and cloud hosting providers — all operating under appropriate data processing agreements
  • Professional advisers: Legal, compliance, and audit firms, under strict confidentiality obligations
  • Banking and financial partners: Solely for the purpose of delivering contracted financial products

All third-party data processors are required to maintain security standards consistent with the DIFC DP Law.

7. International Data Transfers

Some of our service providers (e.g. Microsoft, ElevenLabs) operate internationally. Where personal data is transferred outside the DIFC or UAE, we ensure appropriate safeguards are in place pursuant to Article 26 of the DIFC DP Law, including the use of Standard Contractual Clauses and adequacy assessments.

8. Data Retention

We retain personal data only for as long as necessary to fulfil the purposes for which it was collected, or as required by DFSA record-keeping rules. In general:

  • Client records: Minimum 8 years post-relationship (DFSA requirement)
  • Website enquiries: 2 years from last interaction
  • Consultation records: 3 years
  • Cookie consent records: 1 year

9. Your Rights Under the DIFC DP Law

As a Data Subject under DIFC Law No. 5 of 2020, you have the following rights:

  • Right of Access — to obtain a copy of your personal data we hold
  • Right to Rectification — to correct inaccurate or incomplete data
  • Right to Erasure — to request deletion of data processed on the basis of consent
  • Right to Restriction — to limit how we use your data in certain circumstances
  • Right to Object — to processing based on legitimate interests or for direct marketing
  • Right to Data Portability — to receive your data in a structured, machine-readable format
  • Right to Withdraw Consent — at any time, without affecting prior lawful processing

To exercise these rights, please contact: dataprotection@moneyprotects.com

We will respond within 30 days of receiving your request, in accordance with the DIFC DP Law.

10. Security

We implement appropriate technical and organisational measures to protect your personal data, including SSL/TLS encryption, access controls, server-side security configurations, and regular security reviews. However, no method of transmission over the Internet is 100% secure.

11. Cookies

For full details of the cookies we use and how to control them, please refer to our Cookie Policy.

12. Children's Privacy

Our services are directed exclusively at professional and retail investors aged 18 or above. We do not knowingly collect personal data from individuals under 18. If you believe we hold data about a minor, please contact us immediately.

13. Changes to This Policy

We may update this Privacy Policy periodically. Material changes will be communicated via a prominent notice on our Website. Your continued use of our Website after such notice constitutes your acknowledgement of the updated Policy.

14. Contact & Regulatory Complaints

Data Protection Officer
Money Protects Capital Limited
Park Towers, Level 1, DIFC, Dubai, UAE
Email: dataprotection@moneyprotects.com
Customer Care: customercare@moneyprotects.com

If you are not satisfied with our response, you have the right to lodge a complaint with the DIFC Commissioner of Data Protection.

Money Protects Capital Limited is regulated by the Dubai Financial Services Authority (DFSA). This Privacy Policy was prepared in accordance with DIFC Data Protection Law No. 5 of 2020. Last reviewed: May 2026.