Effective Date: September 18, 2025
Last Updated: September 18, 2025
Solaya Gulf Services, FZCO, registration No. 65483 (“Company”, “we”, “our”, “us”), registered in the Dubai Integrated Economic Zones Authority (“DIEZA”), with its registered address at 67525-001 IFZA Business Park, Dubai,
United Arab Emirates, is committed to respecting your privacy and protecting your personal data, as well ensuring compliance with the DIEZA Data Protection Regulations 2025 (the “Regulations”).
This Privacy Policy outlines how we collect, use, disclose, and safeguard your personal information when you engage with our services, websites (www.solayagulfservices.aero), mobile applications, or business operations.
This Policy is developed in accordance with the Regulations, as well as applicable UAE federal laws, and draws on principles from the Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (GDPR) where relevant to ensure best practices in data protection.
This Policy applies to all personal data processed by us, whether collected online (e.g., through our website or mobile apps), offline (e.g., through business interactions or bookings), or via third parties (e.g., agents, brokers, or other carriers) in connection with our operations in DIEZA. It covers personal data processed in the provision of aviation services, including flight operations, customer support, and related activities.
We may collect and process the following categories of personal data:
• Personal details, such as identity and contact information.
• Financial and business information, including payment, company, and contractual details.
• Professional information, such as employment history and qualifications, where relevant.
• Technical data, including device, browser, and usage information.
• Other information that you choose to provide to us voluntarily.
We process personal data in accordance with applicable laws on the basis of:
• Your consent.
• Our contractual obligations.
• Legal and regulatory requirements.
• Our legitimate interests.
• The protection of vital interests.
We may use personal data for purposes such as:
• Providing and improving our services.
• Managing business relationships and operations.
• Processing transactions and related administration.
• Meeting legal and regulatory obligations.
• Ensuring security and risk management.
• Communicating with you, including for marketing where permitted.
We may share your personal data with:
• Service providers and contractors (IT, payment, logistics, HR).
• Government regulators or DIEZA authorities as required by law.
• Professional advisers (auditors, lawyers, consultants).
• Affiliates or group entities, where applicable.
• Business transfer parties (in case of mergers, acquisitions, restructuring).
All third parties must comply with DIEZA data protection obligations.
Where third parties act as independent controllers (e.g., authorities making independent decisions), we are not responsible for their processing activities. All third parties are required to comply with DIEZA Data Protection Regulations or equivalent standards.
Where personal data is transferred outside DIEZA, we ensure compliance with the Regulations by:
• Transferring data to jurisdictions recognized as adequate by DIEZA or UAE authorities.
• Implementing safeguards such as Standard Contractual Clauses (SCCs) or Binding Corporate Rules (BCRs).
• Obtaining your explicit consent for the transfer, where applicable.
We take all reasonable steps to ensure that transferred data is treated securely and in accordance with this Policy and applicable laws.
We retain personal data only for as long as necessary for the purposes collected, or as required by law and DIEZA regulations.
Once no longer needed, data will be securely deleted or anonymized.
Under DIEZA Regulations, you have the right to:
• Access your personal data.
• Request correction or rectification.
• Request erasure (“right to be forgotten”).
• Restrict or object to processing.
• Request data portability.
• Withdraw consent at any time (without affecting past lawful processing).
• Lodge a complaint with the DIEZA Data Protection Office.
To exercise these rights, contact us using the details in Section 11. We will respond to requests within the timelines prescribed by the Regulations, typically within one month.
We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, loss, misuse, or unlawful processing.
Our website may use cookies and other technologies to enhance user experience and analyze site traffic. You may manage or disable cookies via your browser settings.
We may update this Privacy Policy from time to time in accordance with DIEZA requirements.
Updates will be published on our website with the revised “Last Updated” date.
Solaya Gulf Services, FZCO
Address: 67525-001 IFZA Business Park, Dubai,
United Arab Emirates
Email: management@solayagulfservices.aero
Responsible Person: Lubova Savicka
We are committed to addressing your concerns promptly and in accordance with DIEZA regulations.
By using our services, website, or apps, you accept the terms and practices described in this Policy.
If you disagree with any part of this Policy, please do not use our services.