Privacy Notice

Universal Venture Capital is the venture brand of Universal Asset Management Limited. It is not a separate legal entity, so the controller of personal data processed through this website is Universal Asset Management Limited, a DIFC company. Registered office: Unit GA-00-SZ-L1-RT-201, Level 1, Gate Avenue, South Zone, DIFC, Dubai, United Arab Emirates. Questions about this notice go to info@universalvc.ae.

Four categories of personal data arise from this website. There is no fifth.

Correspondence. Where you write to info@universalvc.ae, the firm holds your name, your email address, the content of your message and any attachments you send. Nothing arrives that you did not choose to send.

Founder applications. The application form at /apply is built but not yet accepting submissions; applications open shortly. When they do, an application will carry the company, contact details for its founders and the deck the founders attach. Until the form opens, the same material reaches the firm by email to info@universalvc.ae and is handled as correspondence.

Access requests. The request form at /access asks for a name, an entity, an email address and a jurisdiction. Those four answers exist for one purpose: to confine fund material to Professional Clients.

Technical logs. The website is served by Cloudflare Pages, and its operation produces connection records generated by the hosting platform. The records exist to deliver the site and to defend it.

Correspondence is processed to deal with the matter raised and, where the writer asks the firm to take steps, to take them. The lawful basis is the firm's legitimate interest in conducting correspondence addressed to it, or the performance of steps requested by the data subject.

Founder application data is processed to assess the applicant company against the strategy of UVC AI Frontier Fund I. The lawful basis is steps taken at the applicant's request before any agreement is entered into, together with the firm's legitimate interest in assessing the ventures that approach it.

Access request data is processed to determine whether the person asking may be shown fund material at all. The lawful basis is compliance with the obligations that apply to a DFSA authorised firm, together with the firm's legitimate interest in keeping fund material away from anyone who is not a Professional Client.

Technical logs are processed to operate the website and to protect it against misuse, on the basis of the firm's legitimate interest in maintaining a secure service. No processing connected with this website relies on consent.

The firm does not sell personal data. It does not trade it or pass it to anyone for marketing. The site carries no tracking scripts and no advertising, and no analytics platform watches you read it. The connection records described above are the whole of its measurement.

Cloudflare Pages processes connection data as the firm's hosting provider. Founder applications and access requests stay inside the firm. Beyond that, personal data is disclosed only where a law, a court or a regulator with jurisdiction over the firm compels disclosure. No other recipient exists.

Retention runs by category. Correspondence is kept while the matter it concerns remains open, then for the record keeping period that applies to a DFSA authorised firm. Founder application material is held while the application is under assessment and afterwards for the period the firm's record keeping obligations require. Access request data stays while the access it supports remains in force. Technical logs last only as long as security review of the service needs them. The governing rule is shorter than this paragraph: nothing outlives its purpose.

The DIFC Data Protection Law 2020 gives you rights over personal data the firm holds: to access it, to have it rectified, to have it erased, to object to its processing and to receive it in a portable form.

To exercise a right, write to info@universalvc.ae. State the right you rely on and the data it concerns. The firm may ask you to verify your identity before it acts on the request.

The Commissioner of Data Protection of the DIFC supervises compliance with the DIFC Data Protection Law 2020. If you consider that the firm's handling of your personal data breaches the Law, you may complain to the Commissioner. You may raise the matter with the firm first at info@universalvc.ae; the Law does not require you to.

Revisions are published on this page and carry a revised effective date. The current version governs.