Back to Home

Privacy Policy

Last updated: April 14, 2026

This Privacy Policy describes how Acuity Infotech FZCO ("AcuSheet", "we", "us", or "our") collects, uses, discloses, and safeguards your personal information when you use our website and cloud-based accounting software available at acusheet.com (collectively, the "Service").

We are committed to protecting your privacy and handling your personal data responsibly, in alignment with the UAE Federal Decree-Law No. 45 of 2021 on the Protection of Personal Data (PDPL) and in a manner consistent with the principles of the EU General Data Protection Regulation (GDPR).

Please read this policy carefully. By accessing or using the Service, you acknowledge that you have read and understood this Privacy Policy.

1. Who We Are

AcuSheet is a product of Acuity Infotech FZCO, a company registered in the Dubai Silicon Oasis Authority, UAE.

  • Registered Address: A5, Dubai Digital Park, Dubai Silicon Oasis, Dubai, United Arab Emirates
  • Email: support@acuity.ae

2. Information We Collect

We collect information in the following ways:

2.1 Information You Provide Directly

  • Account registration: name, email address, password, company name, and country.
  • Billing information: payment details processed via our third-party payment processors (we do not store full card numbers).
  • Business data: invoices, contacts, expenses, and other financial records you enter into the Service.
  • Support communications: messages you send to our support team.

2.2 Information Collected Automatically

  • Usage data: pages visited, features used, actions taken, session duration.
  • Device information: IP address, browser type and version, operating system.
  • Cookies and similar technologies: session cookies for authentication, analytics cookies to understand how the Service is used. See our Cookie section below.

3. How We Use Your Information

We use your personal information for the following purposes:

  • To provide, operate, and maintain the Service.
  • To create and manage your account and authenticate your identity.
  • To process payments and send transactional communications (e.g. invoices, receipts).
  • To respond to your support requests and communicate with you about your account.
  • To send product updates, feature announcements, and marketing communications (you may opt out at any time).
  • To detect and prevent fraud, abuse, or security incidents.
  • To analyse usage patterns and improve the Service.
  • To comply with applicable legal obligations.

4. Legal Basis for Processing (GDPR)

Where GDPR applies, we process your personal data under one or more of the following legal bases:

  • Contract performance: processing necessary to provide the Service you have subscribed to.
  • Legitimate interests: analytics, fraud prevention, and service improvement, where these do not override your rights.
  • Legal obligation: where processing is required to comply with applicable law.
  • Consent: for optional marketing communications and non-essential cookies, which you may withdraw at any time.

5. How We Share Your Information

We do not sell your personal information. We may share data with:

  • Service providers: trusted third parties who assist in operating the Service (hosting, payment processing, analytics, email delivery) under binding data processing agreements.
  • Legal and regulatory bodies: where required by law, court order, or government authority.
  • Business transfers: in connection with a merger, acquisition, or sale of assets, subject to the same privacy commitments.

All third-party service providers are contractually required to process your data only as instructed and to implement appropriate security measures.

6. Data Retention

We retain your personal information for as long as your account is active or as needed to provide the Service. Upon account deletion, we will delete or anonymise your personal data within 90 days, except where we are required to retain it by applicable law (e.g., financial records for tax compliance purposes).

7. Data Security

We implement industry-standard technical and organisational measures to protect your data, including:

  • SSL/TLS encryption for all data transmitted between your browser and our servers.
  • Daily encrypted backups.
  • Role-based access controls limiting internal access to personal data.
  • Regular security reviews of our infrastructure.

While we take reasonable steps to protect your data, no method of electronic transmission or storage is 100% secure. We cannot guarantee absolute security.

8. Cookies

We use cookies and similar tracking technologies to operate and improve the Service. Cookies we use include:

  • Essential cookies: required for authentication and core functionality. These cannot be disabled.
  • Analytics cookies: help us understand how the Service is used (e.g. Google Analytics). You may opt out via your browser settings or our cookie preference centre.

Most browsers allow you to refuse cookies or delete existing ones. Please note that disabling certain cookies may affect the functionality of the Service.

9. International Data Transfers

Our servers are located in data centres that may be outside your country of residence. Where personal data is transferred internationally, we take steps to ensure adequate protection is in place, such as using standard contractual clauses approved by relevant data protection authorities or relying on adequacy decisions where applicable.

10. Your Rights

Depending on your jurisdiction, you may have the following rights regarding your personal data:

  • Access: request a copy of the personal data we hold about you.
  • Correction: request that inaccurate or incomplete data be corrected.
  • Deletion: request deletion of your personal data, subject to legal retention obligations.
  • Restriction: request that we limit how we process your data in certain circumstances.
  • Portability: receive your data in a structured, machine-readable format.
  • Objection: object to processing based on legitimate interests or for direct marketing.
  • Withdraw consent: where processing is based on consent, withdraw it at any time without affecting the lawfulness of prior processing.

To exercise any of these rights, please contact us at support@acuity.ae. We will respond within 30 days. We may require you to verify your identity before processing your request.

11. Children's Privacy

The Service is not directed to individuals under the age of 18. We do not knowingly collect personal information from minors. If you believe we have inadvertently collected such information, please contact us and we will take steps to delete it promptly.

12. Third-Party Links

The Service may contain links to third-party websites or integrations. This Privacy Policy does not apply to those third-party services. We encourage you to review the privacy policies of any third-party services you use.

13. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or applicable law. We will notify you of material changes by email or by displaying a prominent notice within the Service. The "Last updated" date at the top of this page will always reflect the most recent revision. Continued use of the Service after changes take effect constitutes acceptance of the revised policy.

14. Contact Us

If you have any questions, concerns, or complaints about this Privacy Policy or our data practices, please contact us:

  • Email: support@acuity.ae
  • Address: Acuity Infotech FZCO, A5, Dubai Digital Park, Dubai Silicon Oasis, Dubai, United Arab Emirates

We will make every effort to resolve your concerns. If you are located in the European Economic Area and are not satisfied with our response, you have the right to lodge a complaint with your local data protection supervisory authority.

© 2026 AcuSheet · Acuity Infotech FZCO

Terms of ServiceBack to Home