Privacy Policy

AUREL METALS FZCO
Privacy Policy
Last Updated: January 2026
Aurel Metals FZCO (“Company”, “we”, “us”, or “our”) is committed to protecting the privacy, confidentiality, and security of personal and corporate data entrusted to us. This Privacy Policy explains how we collect, use, store, disclose, and protect personal data in accordance with applicable laws and regulations, including the UAE Federal Personal Data Protection Law (PDPL) and DMCC regulatory requirements.
1. SCOPE OF THIS POLICY
This Privacy Policy applies to all Clients, counterparties, suppliers, visitors, and any individuals whose personal data is processed by Aurel Metals FZCO in the course of its business operations, including precious metals trading, refining, logistics, and compliance activities.
2. INFORMATION WE COLLECT
We may collect and process the following categories of data:
2.1 Personal Identification Information

2.2 Corporate & Business Information

2.3 Financial Information

2.4 Compliance & Due Diligence Data

2.5 Communication & Technical Data

3. PURPOSE OF DATA PROCESSING
We process personal data for the following purposes:

4. LEGAL BASIS FOR PROCESSING
We process personal data based on one or more of the following legal grounds:

5. DATA SHARING & DISCLOSURE
Personal data may be disclosed only when necessary and strictly on a need-to-know basis to:

All third parties are required to maintain confidentiality and apply appropriate data protection measures.
6. INTERNATIONAL DATA TRANSFERS
Where required for business operations or regulatory compliance, personal data may be transferred outside the UAE. In such cases, we ensure that appropriate safeguards are in place in accordance with UAE PDPL and applicable regulations.
7. DATA RETENTION
Personal data shall be retained only for as long as necessary to fulfill the purposes for which it was collected, including compliance with legal, regulatory, accounting, and audit requirements. Thereafter, data will be securely deleted or anonymized.
8. DATA SECURITY
We implement appropriate technical and organizational measures to protect personal data against unauthorized access, misuse, loss, alteration, or disclosure, including:

9. DATA SUBJECT RIGHTS
Subject to applicable law, individuals have the right to:

Requests may be submitted in writing using the contact details below.
10. COOKIES & WEBSITE DATA
If applicable, our website may use cookies or similar technologies to improve functionality and user experience. Users may manage or disable cookies through their browser settings.
11. CHANGES TO THIS PRIVACY POLICY
We reserve the right to amend this Privacy Policy at any time to reflect changes in legal, regulatory, or operational requirements. Updated versions shall be effective upon publication.
12. CONTACT INFORMATION
For privacy-related inquiries, data access requests, or concerns, please contact:
Aurel Metals FZCO
Saba 1 Tower, Cluster E, JLT
Dubai, United Arab Emirates
📧 Email: office@aurelmetals.ae

Privacy Policy

Full name, nationality, date of birth

Passport, Emirates ID, or other government-issued identification

Residential or business address

2.2 Corporate & Business Information

Company name, registration details, ownership structure

Trade license, shareholder and director information

Authorized signatory details

2.3 Financial Information

Bank account details

Transaction history and payment records

Source of Funds and Source of Wealth declarations

2.4 Compliance & Due Diligence Data

KYC and AML documentation

Sanctions screening results

Risk assessments and compliance records

2.5 Communication & Technical Data

Email correspondence, phone records

IP address, device data, website usage information (if applicable)

3. PURPOSE OF DATA PROCESSING We process personal data for the following purposes:

Client onboarding and identity verification (KYC/AML)

Execution, settlement, and administration of trades

Compliance with DMCC, UAE laws, and regulatory obligations

Fraud prevention, risk management, and internal audits

Communication, customer support, and record-keeping

Legal, accounting, and operational requirements

4. LEGAL BASIS FOR PROCESSING We process personal data based on one or more of the following legal grounds:

Compliance with legal and regulatory obligations

Performance of contractual obligations

Legitimate business interests

Consent of the data subject, where required by law

5. DATA SHARING & DISCLOSURE Personal data may be disclosed only when necessary and strictly on a need-to-know basis to:

DMCC, government authorities, regulators, or law enforcement agencies

Banks, financial institutions, and payment service providers

Refineries, assay laboratories, logistics, and insurance providers

Auditors, legal advisors, and compliance consultants

Secure data storage systems

Access control and confidentiality obligations

Regular internal compliance reviews

9. DATA SUBJECT RIGHTS Subject to applicable law, individuals have the right to:

Request access to their personal data

Request correction or updating of inaccurate data

Request restriction or cessation of processing, where legally permissible

Withdraw consent, where processing is based on consent

Lodge a complaint with the relevant data protection authority

3. PURPOSE OF DATA PROCESSING
We process personal data for the following purposes:

4. LEGAL BASIS FOR PROCESSING
We process personal data based on one or more of the following legal grounds:

5. DATA SHARING & DISCLOSURE
Personal data may be disclosed only when necessary and strictly on a need-to-know basis to:

9. DATA SUBJECT RIGHTS
Subject to applicable law, individuals have the right to: