This Privacy Policy explains how NGRS-FZCO ("NGRS", "we", "us"), a Dubai-based human resources consultancy, collects, uses and protects personal data when you use our website ngrs.com, submit an enquiry form, or book a call. We keep data collection to the minimum needed to respond to you and to run the site securely.
This policy covers business enquiries via ngrs.com only. It does not apply to job applications or CVs — a separate notice will apply if we offer that.
ngrs.com is intended for business users. We do not knowingly collect data from anyone under 16. If you believe we have, contact [email protected] and we will delete it.
1Who is responsible for your data
The data controller is NGRS-FZCO, Building A1, Dubai Digital Park, Dubai Silicon Oasis, Dubai, United Arab Emirates (IFZA Licence No. 28807).
For any privacy question or request, contact us at [email protected].
2What data we collect
| Category | Details |
|---|---|
| Information you give us (contact / "Build my team" forms) | Your name, work email, company, role, hiring situation, roles to fill, deadline, region, and any message you write. You provide this voluntarily to start a conversation. |
| Call bookings | When you book a discovery call, your name, email and chosen time are processed through Google Calendar Appointment Scheduling. |
| Technical & analytics data | Your IP address, browser/user-agent and the pages you view — recorded in server logs. Logs may contain IP addresses; we use them for security and to produce aggregated traffic statistics, not for advertising profiles. Our analytics is cookieless (no tracking cookies, no third-party marketing trackers). |
We do not knowingly collect special-category data (health, beliefs, etc.). Please don't include such data in free-text fields.
3Why we use it & our legal basis
- To respond to your enquiry and arrange a call — to take steps at your request and our legitimate interest in answering prospective clients. Enquiries are received at
[email protected]and handled by designated NGRS team members; you'll receive an automated acknowledgement that we'll be in touch within one business day. - To run the website securely and understand aggregate traffic — our legitimate interest in security, reliability and improving the site (cookieless, aggregate).
- We do not sell your data, and we do not add you to a marketing list from a contact form.
- We do not use solely automated decision-making that has legal or similarly significant effects on you.
4Cookies
We do not use advertising, marketing or cross-site tracking cookies, and our own analytics is cookieless.
- Cloudflare (site security) may set a short-lived cookie (e.g.
__cf_bm) to distinguish real visitors from automated traffic. - Google Calendar — only if you click to schedule a call: you are taken to Google's booking page, which may set its own cookies. We do not load Google's booking tool until you choose to book.
A short cookie notice on ngrs.com explains this and links to this policy.
5Who we share data with
We use a small number of trusted service providers to operate the site and respond to you. We share only what's necessary:
| Provider | Purpose |
|---|---|
| Google (Workspace email & Calendar) | Receiving your enquiry ([email protected]), notifications, and call scheduling. |
| Cloudflare | Content delivery, DNS and security in front of the website. |
| DigitalOcean | Website hosting (server infrastructure). |
We may disclose data where required by law. We never sell or rent your personal data.
6Where your data is processed
NGRS-FZCO is based in the United Arab Emirates. To run ngrs.com and handle your enquiry, we use providers such as Google, Cloudflare and DigitalOcean. Your information may therefore be stored or processed in the UAE, the United States, or other countries where those providers operate. We share only what each provider needs to do its job for us.
7How long we keep it
Enquiry and booking data is kept for up to 12 months from your last interaction with us, then deleted or anonymised unless we must retain it longer for legal or accounting reasons.
Server logs (which may include IP addresses) are retained for a rolling 90-day window for security and aggregate traffic statistics, then deleted or anonymised.
8Your rights
Subject to your local law (including the EU/UK GDPR), you may request to: access your data; correct it; delete it; restrict or object to processing; or receive a copy (portability). To exercise any right, email [email protected] — we respond within the legally required time.
European Economic Area & United Kingdom
If you are in the EU, UK or EEA, you may lodge a complaint with your local data-protection authority.
United States
California residents and residents of other US states with privacy laws: you have the right to know, delete, and correct personal information we hold about you. We do not sell or share personal information for cross-context behavioural advertising. Submit requests to [email protected]. We will not discriminate against you for exercising these rights.
Brazil & Latin America
If you are in Brazil, you have rights under the LGPD, including access, correction, deletion, and confirmation of processing. You may lodge a complaint with the ANPD. If you are elsewhere in Latin America, you may have similar rights under local law. Contact [email protected] for any request.
9Security
The site is served over HTTPS with modern security headers, sits behind Cloudflare, and access to enquiry data is limited to the NGRS team members who handle it.
10Changes, governing law & contact
We may update this policy; the "last updated" date at the top reflects the current version.
This policy is issued by NGRS-FZCO and is governed by the laws of the United Arab Emirates, without prejudice to mandatory rights in your country of residence.
Questions or requests: [email protected].