Privacy Policy

1. Introduction 

James Watt for Accounting & Bookkeeping Co. LLC ("we", "us", or "our") is committed to protecting and respecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your personal data when you visit our website (jameswattaccounting.com) or engage with our services. 

This policy is issued in compliance with the UAE Federal Decree-Law No. 45 of 2021 on the Protection of Personal Data ("UAE PDPL") and its Executive Regulations, as well as other applicable UAE laws and regulations. 

By using our website or services, you acknowledge that you have read and understood this Privacy Policy. 

 

2. Who We Are 

James Watt Accounting Ltd is an accounting and advisory firm operating in Dubai Silicon Oasis, Dubai, United Arab Emirates. We are a Xero Certified Partner offering bookkeeping, VAT and corporate tax consulting, fractional CFO services, and AML compliance guidance primarily to UAE free zone and mainland companies, as well as clients with cross-border UK/UAE requirements. 

For the purposes of applicable data protection law, we are the data controller of the personal data we process through this website and in the course of providing our services. 

Contact details: 

• Company: James Watt Accounting & Bookkeping Co. LLC 

• Location: Dubai Silicon Oasis, Dubai, United Arab Emirates 

• Email: https://www.jameswattaccounting.com/contact 

• Website: www.jameswattaccounting.com 

 

3. Personal Data We Collect 

We may collect and process the following categories of personal data: 

3.1 Data You Provide Directly 

• Name, email address, phone number, and company name when you contact us via our website enquiry forms or by email 

• Financial and accounting records, transaction data, and business documentation provided as part of an engagement 

• Identification documents (e.g. Emirates ID, passport) where required for AML/KYC compliance 

• VAT registration numbers, trade licence details, and corporate information 

• Payment information processed through secure third-party payment providers 

3.2 Data Collected Automatically 

• IP address, browser type, operating system, and device information 

• Pages visited, time spent on our website, and referral source (via cookies and analytics tools) 

• Location data inferred from your IP address 

3.3 Data Received from Third Parties 

• Information shared by referral partners or introducers with your prior knowledge 

• Publicly available information such as trade licence or company registry data where relevant to our services 

 

4. How We Use Your Personal Data 

We use your personal data for the following purposes and on the following legal bases: 

4.1 Provision of Services (Contractual Necessity) 

• Preparing financial statements, VAT returns, corporate tax filings, and other accounting deliverables 

• Providing bookkeeping, CFO advisory, and AML compliance services 

• Communicating with you about the status of your engagement 

• Issuing invoices and processing payments 

4.2 Legal and Regulatory Obligations 

• Complying with UAE Federal Tax Authority (FTA) requirements 

• Performing Anti-Money Laundering (AML) and Know Your Customer (KYC) checks as required under UAE Cabinet Decision No. 10 of 2019 and the AML Law (Federal Decree-Law No. 20 of 2018) 

• Responding to requests from regulatory authorities including the FTA, CBUAE, or law enforcement 

• Maintaining records as required under UAE law 

4.3 Legitimate Interests 

• Improving and developing our services and website 

• Sending you relevant accounting or regulatory updates where you are an existing client 

• Protecting the security and integrity of our systems 

• Managing our business relationships and internal records 

4.4 With Your Consent 

• Sending marketing communications, newsletters, or service updates where you have opted in 

• Using analytics and non-essential cookies on our website 

You may withdraw your consent at any time by contacting us at the details in Section 2 above. 

 

5. Cookies and Tracking Technologies 

Our website uses cookies and similar tracking technologies to enhance your browsing experience and gather analytical data. Cookies are small text files stored on your device when you visit our site. 

We use the following types of cookies: 

• Essential cookies – necessary for the website to function and cannot be disabled 

• Analytics cookies – help us understand how visitors interact with our site (e.g. Google Analytics) 

• Preference cookies – remember your settings and preferences 

You can control non-essential cookies through your browser settings or via our cookie consent banner. Please note that disabling certain cookies may affect website functionality. 

 

6. Sharing Your Personal Data 

We do not sell your personal data. We may share your data with the following categories of third parties: 

• Xero and other cloud accounting software providers used to deliver our bookkeeping services 

• The UAE Federal Tax Authority (FTA) as required for VAT or Corporate Tax submissions 

• HMRC (UK) for clients with UK tax obligations 

• AML supervisory authorities where required by law 

• Professional advisers (solicitors, auditors) acting under duties of confidentiality 

• IT service providers, cloud storage, and cybersecurity partners who assist our operations 

• Payment processors for the purpose of billing 

All third parties with whom we share data are required to handle your personal data securely and in accordance with applicable law. We do not permit them to use your data for their own marketing purposes. 

 

7. International Data Transfers 

As we serve clients with UK/UAE cross-border needs and use cloud-based software (including Xero), some of your personal data may be transferred to or stored in countries outside the UAE, including the United Kingdom and other jurisdictions. 

Where we transfer data internationally, we take appropriate safeguards to ensure your data remains protected to a standard consistent with the UAE PDPL, including by using contractual protections and selecting service providers operating in jurisdictions with adequate data protection frameworks. 

 

8. Data Retention 

We retain your personal data only for as long as necessary to fulfil the purposes for which it was collected, including satisfying any legal, regulatory, accounting, or reporting obligations. 

In general: 

• Client financial records and engagement files are retained for a minimum of 7 years from the end of the relevant tax period, in line with FTA requirements 

• AML/KYC records are retained for a minimum of 5 years following the end of the business relationship, in line with UAE AML regulations 

• Website enquiry data is retained for up to 12 months unless an engagement begins 

• Marketing preferences are retained until you withdraw consent 

After the applicable retention period, data is securely deleted or anonymised. 

 

9. Your Data Protection Rights 

Subject to the UAE PDPL and its Executive Regulations, you have the following rights in relation to your personal data: 

• Right of Access – to obtain confirmation of whether we process your personal data and to receive a copy 

• Right to Rectification – to have inaccurate or incomplete data corrected 

• Right to Erasure – to request deletion of your data in certain circumstances 

• Right to Restriction of Processing – to request that we limit how we use your data 

• Right to Data Portability – to receive your data in a structured, machine-readable format 

• Right to Object – to object to processing based on legitimate interests or for direct marketing 

• Right to Withdraw Consent – where processing is based on consent, to withdraw it at any time 

To exercise any of these rights, please contact us using the details in Section 2. We will respond to your request within 30 days. We may need to verify your identity before processing your request. 

If you are not satisfied with our response, you have the right to lodge a complaint with the UAE data protection authority. 

 

10. Data Security 

We take the security of your personal data seriously and implement appropriate technical and organisational measures to protect it against unauthorised access, disclosure, loss, or destruction. These include: 

• Encryption of data in transit and at rest 

• Access controls and two-factor authentication for staff systems 

• Use of reputable, security-certified cloud platforms (including Xero) 

• Regular review of our security practices 

In the event of a personal data breach that poses a risk to your rights and interests, we will notify the relevant authority and, where required, affected individuals in accordance with the UAE PDPL. 

 

11. Third-Party Links 

Our website may contain links to third-party websites or services. We are not responsible for the privacy practices of those third parties and encourage you to review their privacy policies before providing any personal data. 

 

12. Children's Privacy 

Our services are intended for businesses and professionals. We do not knowingly collect personal data from individuals under the age of 18. If you believe we have inadvertently collected data about a minor, please contact us and we will take steps to delete it promptly. 

 

13. Changes to This Privacy Policy 

We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or the services we offer. When we make material changes, we will update the effective date at the top of this document and, where appropriate, notify you by email or via a notice on our website.