Legal & transparency

Your privacy

This policy explains what we collect through idealfitoutdemo.brick2bytes.com, how we use it, and the choices you have — in plain language, aligned with how our Dubai studio actually operates online.

Last updated 5 April 2026

01

Scope

Applies to visitors of our public pages: home, about, services, portfolio, blog, FAQ, contact, and this policy. Staff sign-in areas are governed separately.

02

Why we process data

To respond to project enquiries, operate our site securely, send transactional emails you request, and improve how our content performs — not for third-party ad profiling on this site.

03

Where you are

Ideal Fitout LLC is based in the UAE. We describe UAE PDPL-aligned practices and practical steps for international visitors.

04

Questions

For privacy requests, email fitouts@ideal.ae — we aim to respond within a reasonable period.

Who we are

The data controller for this website is Ideal Fitout LLC, an interior design and fit-out practice operating in Dubai and the wider UAE.

Registered / correspondence address:
Unit 1108, 51 Towers, Business Bay, Dubai, United Arab Emirates.

General & privacy contact: fitouts@ideal.ae

This statement is designed to meet transparency expectations under the UAE Federal Decree-Law No. 45 of 2021 on the Protection of Personal Data (PDPL), as well as common expectations of visitors from other regions. It is not a substitute for legal advice.

Data we collect through the website

Depending on how you use the site, we may process the following categories of information.

Contact & project enquiry form

On our contact page, you can submit a structured enquiry. The fields we currently collect include:

  • Full name
  • Email address
  • Phone number
  • Service interest (selected from our services)
  • Project type (new fitout, renovation, or fabrication only)
  • Budget range band
  • Your message
  • Confirmation that you agree to processing under this policy (required to submit)

When you submit the form, we also store a technical record with your submission: your IP address and browser user-agent string (truncated for storage). This helps us prevent abuse, diagnose issues, and meet security obligations. Submissions are stored in our application database and emailed to our team. If your email address is valid, we may send you a short automated acknowledgement.

Submissions are rate-limited per IP address to reduce spam and automated abuse.

Blog newsletter

On the blog, you may subscribe with your email address. We store your email and the IP address recorded at signup (or last interaction) in our newsletter list. New subscribers receive a welcome message from us. If you are already subscribed, we may refresh the stored IP when you submit the form again.

We do not operate a self-service unsubscribe link in the product at present. To withdraw consent or delete your subscription record, email us at fitouts@ideal.ae.

Blog readership metrics

When you open an individual article, our system increments an anonymous view counter on that post. This is an aggregate count and is not used to build a personal reading profile of you.

Optional alternate contact endpoint

A legacy JSON contact endpoint exists at /contact/inquiry. If it receives a submission, details may be written to secure server logs for operational debugging, together with the sender IP address. Our primary, fully featured channel is the contact page above.

Server, hosting, and diagnostics

Like most websites, our hosting environment may automatically log technical data (for example IP address, request path, timestamps, and status codes) when you load pages or assets. We use these logs for security, reliability, and troubleshooting.

Sharing and processors

We do not sell your personal data. We share it only as needed to run the business:

  • Email delivery: transactional messages (enquiry notifications, auto-replies, newsletter welcome) are sent through our configured mail infrastructure (for example SMTP or a transactional email provider).
  • Hosting & IT: data resides on servers and backups operated by us or our hosting providers.
  • Professional advisers: where required (for example legal or accounting), under confidentiality.
  • Authorities: when we believe disclosure is required by law or to protect rights, safety, or security.

How long we keep data

We retain enquiry and newsletter records for as long as needed to manage our relationship with you, meet legal and tax requirements, and resolve disputes — typically on the order of years for commercial correspondence unless you ask us to delete sooner and we have no overriding obligation to keep it.

Server logs are rotated or purged according to operational policy (often a shorter period).

Cookies and similar technologies

Our site is built with Laravel. For forms that use POST requests, the framework may set cookies that are strictly necessary for security — notably a session identifier and a CSRF token — so submissions cannot easily be forged from other sites. These are not used for advertising.

You can control or delete cookies through your browser settings; disabling essential cookies may prevent forms from working correctly.

Third-party sites and embeds

  • WhatsApp: Where we link to WhatsApp (for example from our contact page or footer), you leave our site for Meta’s service. Meta’s terms and privacy notice apply to that conversation.
  • Social links: Footer links to Instagram, Facebook, and LinkedIn take you to those platforms, which have their own policies.
  • Maps: If our contact page embeds Google Maps, Google may collect data according to Google’s privacy policy when you interact with the map.

We do not currently load third-party advertising or analytics pixels (such as Meta Pixel or Google Analytics) in our front-end codebase. If that changes, we will update this page and, where required, seek consent before non-essential tracking runs.

Security

We apply reasonable technical and organisational measures appropriate to the nature of the data — including access controls on administrative areas, encryption in transit (HTTPS), rate limiting on sensitive endpoints, and secure handling of credentials. No method of transmission over the internet is completely secure; we encourage you not to send highly sensitive documents unless we provide a dedicated channel.

Your rights

Depending on applicable law, you may have the right to:

  • Access the personal data we hold about you;
  • Request correction of inaccurate data;
  • Request deletion where there is no compelling reason to continue processing;
  • Withdraw consent where processing is consent-based (for example newsletter);
  • Object to certain processing based on legitimate interests;
  • Lodge a complaint with a supervisory authority where one applies to you.

To exercise any of these rights in connection with this website, email fitouts@ideal.ae with enough detail for us to verify your request. We may need to confirm your identity before acting.

Children

Our services are directed at businesses and adults planning fit-out projects. We do not knowingly collect personal data from children. If you believe a child has provided us data, please contact us and we will take steps to delete it.

Changes to this policy

We may update this page when our website, legal requirements, or practices change. The “Last updated” date at the top will be revised accordingly. Material changes may also be highlighted on the contact page or blog where appropriate.

Privacy contact

For any question about this policy or your personal data:

Ideal Fitout LLC
Unit 1108, 51 Towers, Business Bay
Dubai, United Arab Emirates
Email: fitouts@ideal.ae

Ready to talk about a project?

We will only use your details to respond to your enquiry and follow up professionally.

Go to contact