Code of Conduct

Both Emcredit and our network members abide by a strict Code of Conduct when collecting, processing and disseminating credit information

The key rules of the Code are:

Private
All data processing is governed by DIFC Data Protection Law No. 2007.

Confidential
Request for information is allowed for relevant business purposes only.

Reciprocal
Members can only access data in return for data of their own, which is validated before being uploaded onto our database.

Up-to-date
Data is constantly updated and error-checked to ensure it is timely and accurate.

Secure
All data is securely managed, physically and electronically.

How members access our data

The network members of Emcredit form a closed-user group. They can access data securely in 3 ways: via an internet browser using username(s) and password(s), by sending a batch request through FTP, or by choosing a direct B2B data connection with Emcredit.

Data Privacy & Regulation

As part of the Dubai International Financial Centre (DIFC), Emcredit operates in accordance with DIFC’s data protection regulation. The DIFC has its own civil and commercial laws unlike those in the rest of the UAE. The stringent legal framework is further reinforced with a rigorous data protection regime based on international best practices. Emcredit is subject to DIFC's Data Protection Law No.1 of 2007.

This highly vigilant environment facilitates enhanced data protection. As per the Data Protection Law of the DIFC, all parties that interact with Emcredit -the data provider, the data consumer, and the general public - will have access to legal recourse regarding the processing, usage, and maintenance of their data. This creates confidence amongst the data providers and data subjects and encourages information sharing.

Your Rights as a Data Subject

As a data subject, you can look forward to greater consumer protection in the DIFC.

The Data Protection Law 1 of 2007 empowers you with a right to require and obtain the following:
• Confirmation as to whether or not your personal data is being processed, information relevant to processing, categories of personal data, and recipients to whom the data is enclosed
• Details of the personal data being processed
• Rectification, erasure or blocking of personal data, the processing of which does not comply with the provisions of the Data Protection Law 2007

You also have the right to raise an objection on reasonable grounds against the processing of personal data related to you.

In addition, if you believe that you have been adversely affected by a contravention of the Data Protection Law 2007 due to the processing of your personal data or your rights as a data subject, you may lodge a claim with the DFSA. The DFSA may mediate between you and Emcredit. Subsequently, Emcredit will be directed to take the necessary action within a specified timeframe.