Section 01
UAE Regulatory Compliance
As a UAE-registered company (Free Zone entity), 118 Technology FZE complies with all applicable UAE federal and emirate-level regulations:
| Regulation | Relevance |
|---|---|
| UAE Federal Cybercrime Law (No. 34 of 2021) | Our platform and security practices comply fully with UAE cybercrime legislation |
| UAE PDPL (Federal Decree-Law No. 45 of 2021) | All personal data processing governed by UAE data protection principles |
| UAE Federal Tax Authority (FTA) | 118 Accounting is fully UAE VAT-compliant; FTA-ready reporting built-in |
| UAE RERA Regulations | 118 PMS Lease module is aligned with Dubai Land Department and RERA requirements |
| UAE DTCM Requirements | 118 PMS Hotels module includes full Tourism Dirham and DTCM compliance |
| Dubai Internet City (DIC) | Registered as a technology company within DIC free zone |
Section 02
Data Protection
Our data protection compliance programme covers:
- Appointment of a Data Protection Officer (DPO)
- Data Protection Impact Assessments (DPIAs) for high-risk processing activities
- Records of processing activities maintained and updated regularly
- Data subject rights fulfilment procedures (access, correction, deletion, portability)
- Data Processing Agreements (DPAs) with all third-party processors
- Data breach notification procedures aligned with PDPL 72-hour notification requirement
Section 03
Financial & Tax Compliance
- UAE VAT Registration โ 118 Technology FZE is registered with the UAE Federal Tax Authority
- WPS Compliance โ Our payroll features support UAE Wage Protection System requirements
- DEWS Support โ End-of-Service gratuity calculations comply with DIFC and mainland requirements
- AML/CFT โ Anti-money laundering controls embedded in our financial transaction processing
Section 04
Industry Standards
| Standard | Status | Scope |
|---|---|---|
| ISO/IEC 27001 | Aligned | Information security management |
| SOC 2 Type II | In progress | Security, availability, confidentiality |
| PCI DSS | Compliant (via processors) | Payment card data handling |
| OWASP Top 10 | Mitigated | Web application security |
Section 05
International Frameworks
For customers operating internationally or processing data of EU residents, we also maintain practices aligned with:
- EU General Data Protection Regulation (GDPR) โ See our dedicated GDPR Compliance page
- Saudi Arabia PDPL โ Data processing for Saudi customers aligned with KSA Personal Data Protection Law
- DIFC Data Protection Law โ For customers operating within the Dubai International Financial Centre
Section 06
Compliance Programmes
Our internal compliance programme includes:
- Quarterly compliance reviews and gap assessments
- Annual third-party security audits
- Employee compliance training (quarterly)
- Vendor due diligence and third-party risk assessments
- Compliance monitoring and incident tracking
Section 07
Compliance Contact
For compliance enquiries, audit requests, or to obtain our compliance documentation:
โ
Compliance Officer
compliance@118dubai.com
Compliance & regulatory queries
โ๏ธ
Legal Department
legal@118dubai.com
Legal & regulatory matters