Cookies Policy

This Cookies Policy explains how UG UAE uses cookies and similar technologies on our public website. It supplements, and should be read alongside, our Privacy Policy.

1. What cookies are

A cookie is a small text file placed on your device by a website you visit. Similar technologies include local storage, session storage, pixels, and SDK identifiers. We refer to all of these as "cookies" in this policy unless a distinction matters.

Cookies allow a site to recognize your device across requests, remember preferences, secure the session, and produce aggregate measurement data.

2. Categories of cookies we use

We classify cookies into three categories.

a. Strictly necessary. Required for the site to function and for security. These cannot be switched off in our consent interface. They include cookies set to maintain a session, balance load, validate that a request originates from a human (anti-bot), and remember your cookie-consent choice itself.

b. Analytics. Used to understand aggregate usage so we can improve content. We use Vercel Web Analytics, which operates in cookieless mode by design, it does not set cookies and does not track users across sessions or sites. It generates anonymized, aggregated metrics from server-side request signals.

c. Preferences. Used to remember non-essential choices such as your selected display theme or language preference, where we offer those.

We do not use advertising or cross-site tracking cookies on this website.

3. Cookie inventory

The following table lists the cookies and similar storage items in use on the Site. We keep it current as the technology stack changes.

Name	Provider	Purpose	Type	Duration	Category
cf_clearance	Cloudflare	Records that the device has passed bot-mitigation challenge	First-party HTTP cookie	Up to 30 days	Strictly necessary
__cf_bm	Cloudflare	Bot-management heuristics for the current browsing session	First-party HTTP cookie	Session (typically 30 minutes of inactivity)	Strictly necessary
cf-turnstile token (transient)	Cloudflare Turnstile	Validates form submission as human, where Turnstile is enabled	In-memory token, not persisted to disk	Single submission	Strictly necessary
ug_consent	UG UAE	Stores your cookie-consent choice	First-party HTTP cookie	12 months	Strictly necessary
ug_theme	UG UAE	Remembers light/dark display preference, where offered	First-party local storage	Until cleared by user	Preferences

Vercel Web Analytics is included for completeness: it sets no cookies and does not place identifiers on your device. Measurement is performed using anonymized request-side signals only.

We will update this inventory as the Site's technology stack evolves. The version number and last-updated date at the top of this page identify the current version.

4. Legal basis and consent

Strictly necessary cookies are used on the basis of our legitimate interest in operating a secure, functioning website (Article 6(1)(f) GDPR) and the corresponding exemption under Article 5(3) of the ePrivacy Directive (2002/58/EC, as amended) for cookies "strictly necessary for the provision of an information-society service explicitly requested by the subscriber or user."

Non-essential cookies (analytics where they set identifiers, preferences) are placed only with your consent. Because our analytics provider operates cookieless, no consent prompt is presented for analytics on this Site at present. If we add a cookie-based analytics or marketing tool in the future, we will obtain prior consent through a consent-management interface that lets you accept or reject each non-essential category before any such cookie is set, and we will update this policy accordingly.

5. Managing cookies

You can manage cookies in the following ways:

• Browser controls. All major browsers allow you to view, delete, and block cookies through settings. Instructions: Chrome (chrome://settings/cookies), Firefox (about:preferences#privacy), Safari (Preferences, then Privacy), Edge (Settings, then Privacy, search, and services).
• Do Not Track / Global Privacy Control. We honor Global Privacy Control (GPC) signals where applicable law treats them as a valid expression of consent withdrawal.
• Device-level controls. Mobile operating systems provide device-level identifier and tracking controls.

Disabling strictly necessary cookies will prevent parts of the Site from functioning correctly, including form submission and bot-mitigation.

6. Compliance references

This policy is drafted with reference to:

• UAE Federal Decree-Law No. 45 of 2021 on the Protection of Personal Data (the PDPL), our primary data-protection framework as a Dubai-headquartered entity;
• Regulation (EU) 2016/679 (GDPR), applied as a GDPR-aligned standard for EU-connected processing;
• Directive 2002/58/EC (the ePrivacy Directive), as transposed into the national law of each EU/EEA Member State;
• the UK Privacy and Electronic Communications Regulations 2003 (PECR), as enforced by the Information Commissioner's Office (ICO);
• the European Data Protection Board's Guidelines 2/2023 on Technical Scope of Art. 5(3) of ePrivacy Directive.

7. Changes

We may update this policy when our cookie use changes or when guidance from regulators evolves. Material changes will be reflected in the version number and last-updated date at the top of this page.

8. Contact

Questions about this policy may be directed to privacy@ug-uae.co.

---

This is a published legal statement. The current version supersedes all prior versions. Last updated: 2026-06-09. For questions: legal@ug-uae.co.