Privacy Policy

Last updated: 08-Feb-2026

1. Who we are

RISAA Operations is a trading name of PIONERIX L.L.C-FZ,a company registered in the United Arab Emirates.

Registered address:
Meydan Grandstand, 6th Floor, Meydan Road, Nad Al Sheba, Dubai, U.A.E.

Contact email: amir@risaaoperations.com

In this policy, “RISAA”, “we”, “us”, or “our” refers toPIONERIX L.L.C-FZ operating as RISAA Operations.

2. Scope of this policy

This Privacy Policy explains how we collect, use, store, andprotect personal and business data when you:

  • visit our website
  • contact us
  • engage us for discovery, design, or delivery services
  • communicate    with us via email, phone, or WhatsApp
  • are  a client, prospect, or contractor involved in our work

3. Types of data we collect

Depending on context, we may collect the followingcategories of data.

3.1 Identity and contact information

  • Name
  • Company name
  • Job title
  • Email address
  • Phone number (including WhatsApp number)

3.2 Business and operational data

  • Enquiry details
  • Workflow and project information
  • Meeting notes and summaries
  • Decisions, approvals, next steps, and status updates
  • Files, images, and documents shared for delivery

3.3 Communications data

  • Emails sent to or from us
  • WhatsApp messages sent to our business number
  • Notes or summaries of calls or meetings

We do not passively monitor or scrape WhatsApp groupchats.

4. How we collect data

We collect data when you:

  • submit an enquiry or contact us
  • participate in calls or meetings
  • communicate with us via WhatsApp or email
  • engage us as a client or contractor
  • provide information required to deliver services

5. WhatsApp and Meta platforms

5.1 WhatsApp Business usage

We operate a WhatsApp-first working model.

  • WhatsApp is used as a day-to-day communication channel
  • Structured business outcomes may be captured manually into our systems
  • We do not automatically extract or monitor WhatsApp group chats

5.2 WhatsApp Business Platform (API)

Where required for delivery, we may apply for and use the WhatsAppBusiness Platform (API) via approved Meta Business Solution Providers.

This may involve processing:

  • WhatsApp phone numbers
  • Message content sent to a business number
  • Message metadata (timestamps, delivery status)

This data is processed solely for business communication andservice delivery.

5.3 Meta (Facebook) Business Manager

As part of WhatsApp Business Platform onboarding, Meta mayrequire verification and account information, including:

  • Business entity details
  • Contact details of authorised representatives
  • Business phone numbers
  • Messaging activity related to the business account

Meta processes this information under its own privacypolicies. We recommend reviewing Meta’s privacy documentation for furtherdetails.

6. Why we process data

We process data to:

  • respond to enquiries
  • run discovery and design sessions
  • deliver our services
  • operate WhatsApp-first workflows responsibly
  • maintain a structured system of record (for example, in Zoho)
  • provide visibility, reporting, and follow-through
  • meet legal, contractual, and regulatory obligations

We do not sell personal data.

7. Systems and data storage

We use reputable third-party systems, including:

  • Zoho (CRM and related tools) as our primary system of record
  • WhatsApp Business App and/or WhatsApp Business Platform
  • Email and secure file storage tools

Data may be stored or processed on servers outside the UAEdepending on provider architecture. We rely on providers that implementappropriate security and compliance safeguards.

8. Access and sharing

Access to data is limited to:

  • RISAA internal personnel (where applicable)
  • Approved freelancers or contractors engaged for delivery

All contractors are required to sign confidentiality, dataprotection, and usage restrictions before accessing any client or prospectdata.

9. Subcontractors, AI tools, and third parties

  • Client data is not shared with subcontractors unless required and approved
  • Client data is not uploaded to public AI tools without prior written approval
  • Approved tools must be used strictly for the agreed purpose

10. Legal basis and compliance

We process personal data in accordance with applicable dataprotection laws, including:

  • UAE data protection laws
  • Where applicable, the EU General Data Protection Regulation (GDPR)

Our legal bases include contractual necessity, legitimateinterests, and consent where required.

11. Data retention

We retain data only for as long as necessary to:

  • deliver services
  • maintain business records
  • comply with legal or regulatory obligations

Data is securely deleted or anonymised when no longerrequired.

12. Data security

We take reasonable technical and organisational measures toprotect data, including:

  • access controls
  • least-privilege permissions
  • secure systems and providers
  • internal data-handling rules

No system is entirely risk-free, but we aim to minimiseexposure and respond quickly to issues.

13. Your rights

Subject to applicable law, you may have the right to:

  • access your personal data
  • request correction
  • request deletion
  • object to certain processing

Requests can be made by emailing amir@risaaoperations.com.

14. Cookies

Our website may use essential or analytics cookies.
Where required, a separate cookie notice will be provided.

15. Changes to this policy

We may update this Privacy Policy from time to time.
The current version will always be published on our website.

16. Contact

For questions about this policy or data handling, contact:

amir@risaaoperations.com