Home
Blog

Privacy Notice

Last updated: 9 July 2026

1. Who We Are

dharsi AI Ltd (“dharsi”, “we”, “us”) is an AI software company registered in the Dubai International Financial Centre (DIFC), Dubai, United Arab Emirates (licence CL13216), with its registered office at Level 3, Innovation One, DIFC, Dubai. We are subject to the DIFC Data Protection Law, DIFC Law No. 5 of 2020 (the “DIFC DP Law”), and we act as Controller of the personal data described in this notice.

2. Scope of This Notice

This notice applies to personal data we collect through our websites, including dharsi.ai and its subdomains such as recon.dharsi.ai, and through our business correspondence and marketing activity.

It does not apply to data processed inside client deployments of our products. dharsi Recon and dharsi Warden run entirely within each client institution's own environment; dharsi does not host, receive or access the data processed there, and the client institution remains the controller of that data at all times.

3. Personal Data We Collect

We collect the following categories of personal data:

Enquiry and demo request data: name, work email address, company or institution, role, area of interest, and the content of your message, when you submit a form on our websites or email us.

Booking data: name, email address, and any details you provide when booking a meeting through our scheduling page.

Business contact data: professional contact details of prospective client representatives, collected from public professional sources for business-to-business outreach.

Website analytics data: usage information such as pages visited and approximate location, collected through Google Analytics only if you accept analytics cookies. If you decline, no analytics data is collected.

4. How We Use Personal Data and Our Legal Bases

We process personal data to respond to enquiries and demo requests, to communicate with prospective and existing clients, to operate and improve our websites, and to comply with legal obligations that apply to us.

Under the DIFC DP Law, we rely on the following legal bases: your consent (for analytics cookies); steps taken at your request prior to entering a contract, and the performance of contracts (for client engagement); our legitimate interests in promoting our products to relevant institutions, provided those interests are not overridden by your rights; and compliance with legal obligations.

5. Cookies and Analytics

Our websites use a consent banner. Analytics cookies are set only if you click Accept; if you decline, no analytics tools load and no analytics data is sent. You can change your choice by clearing your browser's site data for our websites.

Where you consent, we use Google Analytics 4 with event data retention limited to 14 months. Our contact forms are protected by Cloudflare Turnstile, a security check that verifies you are not a bot; it operates as part of form submission and does not track you across sites.

6. How Personal Data Is Stored and Shared

Form submissions and business correspondence are delivered to and stored in our own Microsoft 365 environment, which is configured for data residency in the UAE. We do not sell personal data, and we do not share it with third parties for their own marketing.

We use a small number of service providers to operate our business, such as Microsoft (productivity and email) and Cloudflare (website security). Where a provider processes personal data outside the DIFC, we apply the safeguards required by the DIFC DP Law, including transfers to jurisdictions recognised as adequate or the use of appropriate contractual protections.

7. Retention

We keep personal data only as long as needed for the purposes described above, in line with our internal retention schedule: enquiry and prospect data is reviewed and removed when no longer relevant to an active or prospective business relationship; correspondence and contractual records are retained for the periods required by DIFC and UAE law; and analytics data expires automatically after 14 months.

8. Your Rights

Under the DIFC DP Law you have rights to access your personal data, to rectification, to erasure, to restrict or object to processing, to data portability, and to withdraw consent at any time where processing is based on consent, without affecting the lawfulness of processing before withdrawal. You also have the right to object to direct marketing at any time.

To exercise any of these rights, contact us at info@dharsi.ai. We will respond within the timeframes required by the DIFC DP Law. You also have the right to lodge a complaint with the DIFC Commissioner of Data Protection.

9. Security

We apply appropriate technical and organisational measures to protect personal data, including encryption in transit, access controls and least-privilege administration across our systems, and security controls on our websites and infrastructure.

10. Changes to This Notice

We may update this notice from time to time. The date at the top shows when it was last revised, and material changes will be reflected on this page.

11. Contact Us

dharsi AI Ltd, Level 3, Innovation One, DIFC, Dubai, United Arab Emirates. Email: info@dharsi.ai.