When Anne Nielsen received an unsolicited email from a primary school in Dubai advertising its services, she was alarmed.
Pregnant at the time with her first child, the Dane, a UAE resident for over seven years, hadn’t started inquiring into education options for her unborn child and had never received a communication of this sort before.
Her assumption was that one of her healthcare providers had sold her information to the business in question.
“I wasn’t surprised but I was annoyed. It seems too much of a coincidence that I’m pregnant and all of a sudden I’m contacted by a school,” says the former corporate executive, now mum to a five-month-old daughter. “They shouldn’t be able to pass on personal details.”
Ms Nielsen is not alone. Many UAE residents consider spam email and SMS messages a part of UAE life, therefore are unlikely to make a complaint to the police. While there is no specific data protection law in the UAE, experts say there are several other articles and statutes that cover such actions and companies often do not realise they are taking a risk by sharing private data.
“There is a big problem regarding the lack of awareness exhibited by companies and individuals around what is acceptable in terms of an individual’s private data use,” says Nader Henein, regional director for BlackBerry’s advanced cyber assurance programme. “Selling or passing on an individual’s details such as phone numbers, email addresses or credit card information is definitely not acceptable in the eyes of the law, but because so few people make a complaint this issue goes largely unreported and continues to a high degree.”
Under current rules, companies can sell data if they have permission to share it or if it’s non-identifiable, says Anthony Murray, country manager for the Middle East at Shred-it, a document and hard drive secure disposal company.
Mr Murray says many organisations sell “big data”, for example the number of people registered with a certain medical complaint or aggregated mobile phone data. To sell, a company can contact a data exchange house or data buyer. Sellers need only search online for a buyer, there are hundreds available.
While data can be shared with an individual’s permission, it’s the lack of permission that creates an issue.
“The unauthorised use of personal data is likely to lead to prosecution under the 1987 Penal Code, with the risk of the cyber crimes law also being applied,” says Brendan Walsh, a solicitor at James Berry & Associates. “Our advice to businesses that come into possession of personal data is they should first obtain the client’s consent if they intend using such data, exercise due care and attention in how they utilise that data, even in circumstances where they have consent and finally demonstrate that they have a robust privacy policy in place and a safe means of storage of data, particularly if it’s personal.”
For those who do complain about having their data misused, Mr Henein says the outcome is usually favourable, provided the complainant has proof.
“The authorities take a dim view of those found to be transgressing an individual’s right to privacy and the courts can hand down heavy penalties to those convicted of such an offence,” he says.
According to Mr Walsh, penalties issued under the cyber crimes law, include fines ranging from Dh100,000 to Dh1 million and imprisonment.
Companies should also be aware of the far-reaching implications of the General Data Protection Regulation, which applies to the processing of data for all EU residents – even those based here – which comes with its own punishments.
Privacy and stringent data protection policies are often overlooked by UAE firms too busy with the day-to-day operations. However, experts say such policies are critical to business success.
The Ponemon Institute’s 2015 report, Cost of a Data Breach Study: Arabian Region, found that reputation and the loss of customer loyalty does the most damage to a company’s bottom line. About half of the total Dh13.9 million average cost of a breach is accounted for by lost business.
Mr Murray says managers and business owners have a responsibility to ensure the company protects business, customer and employee data.
“Nearly all multinational companies will have a stringent internal data protection policy in place, but we’ve found through our daily contact with potential clients that even then, the policy often isn’t adhered to in the UAE,” he says.
To protect against this, Mr Murray recommends introducing a business data security policy or hiring a compliance officer to identify risks.
“Businesses tend to align on the cyber side of security and most reputable companies have some focus on controlling data collected through electronic means,” he adds. “However, often this electronic data is later printed off and sold to recyclers or paper traders. This leaves the company and the consumer open to a huge risk of fraud.”
business@thenational.ae
Follow The National's Business section on Twitter
The specs
Engine: 2.0-litre 4-cyl, 48V hybrid
Transmission: eight-speed automatic
Power: 325bhp
Torque: 450Nm
Price: Dh359,000
On sale: now
The team
Videographer: Jear Velasquez
Photography: Romeo Perez
Fashion director: Sarah Maisey
Make-up: Gulum Erzincan at Art Factory
Models: Meti and Clinton at MMG
Video assistant: Zanong Maget
Social media: Fatima Al Mahmoud
The specs: 2018 Range Rover Velar R-Dynamic HSE
Price, base / as tested: Dh263,235 / Dh420,000
Engine: 3.0-litre supercharged V6
Power 375hp @ 6,500rpm
Torque: 450Nm @ 3,500rpm
Transmission: Eight-speed automatic
Fuel consumption, combined: 9.4L / 100kms
INFO
What: DP World Tour Championship
When: November 21-24
Where: Jumeirah Golf Estates, Dubai
Tickets: www.ticketmaster.ae.
Terror attacks in Paris, November 13, 2015
- At 9.16pm, three suicide attackers killed one person outside the Atade de France during a foootball match between France and Germany
- At 9.25pm, three attackers opened fire on restaurants and cafes over 20 minutes, killing 39 people
- Shortly after 9.40pm, three other attackers launched a three-hour raid on the Bataclan, in which 1,500 people had gathered to watch a rock concert. In total, 90 people were killed
- Salah Abdeslam, the only survivor of the terrorists, did not directly participate in the attacks, thought to be due to a technical glitch in his suicide vest
- He fled to Belgium and was involved in attacks on Brussels in March 2016. He is serving a life sentence in France
The specs: 2018 Maxus T60
Price, base / as tested: Dh48,000
Engine: 2.4-litre four-cylinder
Power: 136hp @ 1,600rpm
Torque: 360Nm @ 1,600 rpm
Transmission: Five-speed manual
Fuel consumption, combined: 9.1L / 100km
Company%20Profile
%3Cp%3E%3Cstrong%3ECompany%20name%3A%20%3C%2Fstrong%3ENamara%0D%3Cbr%3E%3Cstrong%3EStarted%3A%20%3C%2Fstrong%3EJune%202022%0D%3Cbr%3E%3Cstrong%3EFounder%3A%20%3C%2Fstrong%3EMohammed%20Alnamara%0D%3Cbr%3E%3Cstrong%3EBased%3A%20%3C%2Fstrong%3EDubai%20%0D%3Cbr%3E%3Cstrong%3ESector%3A%20%3C%2Fstrong%3EMicrofinance%0D%3Cbr%3E%3Cstrong%3ECurrent%20number%20of%20staff%3A%20%3C%2Fstrong%3E16%0D%3Cbr%3E%3Cstrong%3EInvestment%20stage%3A%20%3C%2Fstrong%3ESeries%20A%0D%3Cbr%3E%3Cstrong%3EInvestors%3A%20%3C%2Fstrong%3EFamily%20offices%0D%3Cbr%3E%3C%2Fp%3E%0A
Tamkeen's offering
- Option 1: 70% in year 1, 50% in year 2, 30% in year 3
- Option 2: 50% across three years
- Option 3: 30% across five years
On the menu
First course
▶ Emirati sea bass tartare Yuzu and labneh mayo, avocado, green herbs, fermented tomato water
▶ The Tale of the Oyster Oyster tartare, Bahraini gum berry pickle
Second course
▶ Local mackerel Sourdough crouton, baharat oil, red radish, zaatar mayo
▶ One Flew Over the Cuckoo’s Nest Quail, smoked freekeh, cinnamon cocoa
Third course
▶ Bahraini bouillabaisse Venus clams, local prawns, fishfarm seabream, farro
▶ Lamb 2 ways Braised lamb, crispy lamb chop, bulgur, physalis
Dessert
▶ Lumi Black lemon ice cream, pistachio, pomegranate
▶ Black chocolate bar Dark chocolate, dates, caramel, camel milk ice cream
LOVE%20AGAIN
%3Cp%3EDirector%3A%20Jim%20Strouse%3C%2Fp%3E%0A%3Cp%3EStars%3A%20Priyanka%20Chopra%20Jonas%2C%20Sam%20Heughan%2C%20Celine%20Dion%3C%2Fp%3E%0A%3Cp%3ERating%3A%202%2F5%3C%2Fp%3E%0A
Spain drain
CONVICTED
Lionel Messi Found guilty in 2016 of of using companies in Belize, Britain, Switzerland and Uruguay to avoid paying €4.1m in taxes on income earned from image rights. Sentenced to 21 months in jail and fined more than €2m. But prison sentence has since been replaced by another fine of €252,000.
Javier Mascherano Accepted one-year suspended sentence in January 2016 for tax fraud after found guilty of failing to pay €1.5m in taxes for 2011 and 2012. Unlike Messi he avoided trial by admitting to tax evasion.
Angel di Maria Argentina and Paris Saint-Germain star Angel di Maria was fined and given a 16-month prison sentence for tax fraud during his time at Real Madrid. But he is unlikely to go to prison as is normal in Spain for first offences for non-violent crimes carrying sentence of less than two years.
SUSPECTED
Cristiano Ronaldo Real Madrid's star striker, accused of evading €14.7m in taxes, appears in court on Monday. Portuguese star faces four charges of fraud through offshore companies.
Jose Mourinho Manchester United manager accused of evading €3.3m in tax in 2011 and 2012, during time in charge at Real Madrid. But Gestifute, which represents him, says he has already settled matter with Spanish tax authorities.
Samuel Eto'o In November 2016, Spanish prosecutors sought jail sentence of 10 years and fines totalling €18m for Cameroonian, accused of failing to pay €3.9m in taxes during time at Barcelona from 2004 to 2009.
Radamel Falcao Colombian striker Falcao suspected of failing to correctly declare €7.4m of income earned from image rights between 2012 and 2013 while at Atletico Madrid. He has since paid €8.2m to Spanish tax authorities, a sum that includes interest on the original amount.
Jorge Mendes Portuguese super-agent put under official investigation last month by Spanish court investigating alleged tax evasion by Falcao, a client of his. He defended himself, telling closed-door hearing he "never" advised players in tax matters.
Temple numbers
Expected completion: 2022
Height: 24 meters
Ground floor banquet hall: 370 square metres to accommodate about 750 people
Ground floor multipurpose hall: 92 square metres for up to 200 people
First floor main Prayer Hall: 465 square metres to hold 1,500 people at a time
First floor terrace areas: 2,30 square metres
Temple will be spread over 6,900 square metres
Structure includes two basements, ground and first floor
'Skin'
Dir: Guy Nattiv
Starring: Jamie Bell, Danielle McDonald, Bill Camp, Vera Farmiga
Rating: 3.5/5 stars
The%20specs%20
%3Cp%3E%3Cstrong%3EEngine%3A%20%3C%2Fstrong%3E2.0-litre%204cyl%20turbo%0D%3Cbr%3E%3Cstrong%3EPower%3A%20%3C%2Fstrong%3E261hp%20at%205%2C500rpm%0D%3Cbr%3E%3Cstrong%3ETorque%3A%20%3C%2Fstrong%3E400Nm%20at%201%2C750-4%2C000rpm%0D%3Cbr%3E%3Cstrong%3ETransmission%3A%20%3C%2Fstrong%3E7-speed%20dual-clutch%20auto%0D%3Cbr%3E%3Cstrong%3EFuel%20consumption%3A%20%3C%2Fstrong%3E10.5L%2F100km%0D%3Cbr%3E%3Cstrong%3EOn%20sale%3A%20%3C%2Fstrong%3ENow%0D%3Cbr%3E%3Cstrong%3EPrice%3A%20%3C%2Fstrong%3EFrom%20Dh129%2C999%20(VX%20Luxury)%3B%20from%20Dh149%2C999%20(VX%20Black%20Gold)%3C%2Fp%3E%0A
In numbers: PKK’s money network in Europe
Germany: PKK collectors typically bring in $18 million in cash a year – amount has trebled since 2010
Revolutionary tax: Investigators say about $2 million a year raised from ‘tax collection’ around Marseille
Extortion: Gunman convicted in 2023 of demanding $10,000 from Kurdish businessman in Stockholm
Drug trade: PKK income claimed by Turkish anti-drugs force in 2024 to be as high as $500 million a year
Denmark: PKK one of two terrorist groups along with Iranian separatists ASMLA to raise “two-digit million amounts”
Contributions: Hundreds of euros expected from typical Kurdish families and thousands from business owners
TV channel: Kurdish Roj TV accounts frozen and went bankrupt after Denmark fined it more than $1 million over PKK links in 2013
Groom and Two Brides
Director: Elie Semaan
Starring: Abdullah Boushehri, Laila Abdallah, Lulwa Almulla
Rating: 3/5
