← Back to home

Data Protection Policy

Effective date: 25 May 2026 · Last updated: 25 May 2026 · Notabene — MOBILE AGENDA FZE LLC

This Data Protection Policy explains how MOBILE AGENDA FZE LLC, a company registered in the United Arab Emirates, operating the Notabene service (“Notabene”, “we”, “us”, or “our”), collects, uses, discloses, retains and protects personal data when you visit our website, create an account, use our content-generation services, communicate with us or purchase a subscription.

For the purposes of applicable data protection law, MOBILE AGENDA FZE LLC is the controller of the personal data described in this Policy, unless stated otherwise.

Company: MOBILE AGENDA FZE LLC. Brand / Service: Notabene. Registered address: B-1107-02, Grand Tower, Ajman, UAE. Privacy and data protection contact: support@notabene.agency

1. Scope of this Policy

  • This Policy applies to personal data processed through: the Notabene website and web application
  • account creation, onboarding and content-generation features
  • subscription, billing and customer support interactions
  • product, service and transactional communications
  • and any other interaction that links to this Policy.

This Policy does not apply to third-party websites, platforms or services that may be linked from Notabene. Their handling of personal data is governed by their own policies.

2. Applicable Data Protection Framework

We handle personal data in accordance with applicable data protection requirements, including, where applicable, the UAE Federal Decree-Law No. 45 of 2021 on the Protection of Personal Data (“UAE PDPL”).

MOBILE AGENDA FZE LLC is a UAE free zone entity. If the company is established in a UAE financial free zone that has its own data protection legislation, such as the Dubai International Financial Centre (DIFC) or Abu Dhabi Global Market (ADGM), this Policy must be reviewed and updated to reflect that specific framework before publication.

Where individuals outside the UAE use Notabene, additional privacy laws may apply depending on the user’s location and the nature of our activities. We will comply with such laws where they apply to our processing.

3. Personal Data We Collect

We may collect and process the following categories of personal data.

3.1 Account and identification data

  • name
  • email address
  • login, authentication and account identifiers
  • company, role, professional title or similar profile information that you choose to provide.

3.2 Onboarding and content input data

Notabene is designed to help users turn their professional experience and positioning into written content. Depending on what you provide, we may process: professional background, expertise, career goals and target audience; preferred themes, tone of voice and content strategy information; answers entered during onboarding; prompts, notes, draft text, feedback, edits and other materials submitted for article generation; generated articles, content plans and saved outputs.

You should not submit confidential information belonging to another person or organisation unless you are authorised to do so. You should also avoid submitting sensitive personal data unless it is strictly necessary and you have a lawful reason to provide it.

3.3 Subscription and transaction data

  • When you purchase a paid subscription, we may process: selected plan and subscription status
  • payment status, billing history, invoices and transaction identifiers
  • limited billing information made available to us by our payment service provider.

Payment card details are processed by our payment service provider and are not intended to be stored by Notabene directly.

3.4 Technical and usage data

  • When you access or use the service, we may collect: IP address, browser type, device type, operating system and approximate location derived from IP address
  • log-in activity, timestamps and session information
  • pages or features viewed, actions taken, referral URLs and error logs
  • cookie identifiers and similar technical identifiers, subject to any consent requirements applicable to you.

3.5 Communications and support data

If you contact us, we may process your contact details and the content of your communication, including support requests, feedback and correspondence.

3.6 Marketing preferences

We may process information about whether you wish to receive product updates or promotional messages and your unsubscribe or preference choices.

4. How We Collect Personal Data

  • We collect personal data: directly from you when you create an account, complete onboarding, submit content, make a purchase or contact us
  • automatically when you use the website or application, through logs, cookies or similar technologies
  • from service providers acting on our behalf, such as authentication, payment, hosting, analytics, customer support or email delivery providers
  • and from publicly available sources only where you ask us to use such information or where use is otherwise lawful and relevant to providing the service.

5. How We Use Personal Data and Why

We use personal data only where necessary for specific, clear and lawful purposes. Depending on the processing and applicable law, we rely on your consent, performance of our contract with you, our legitimate business interests where permitted, or compliance with legal obligations.

- Create and manage your account — Categories: Account, authentication and technical data. Lawful basis: To provide the service and administer your account. - Deliver onboarding, content plans and article-generation features — Categories: Onboarding inputs, prompts, professional information, generated outputs and usage data. Lawful basis: To perform our service agreement with you and generate requested content. - Improve generated content based on your edits and instructions — Categories: Submitted text, feedback and outputs. Lawful basis: To provide and improve the requested product functionality; where required, based on your consent or other lawful basis. - Process subscriptions and billing — Categories: Account, plan, billing and transaction data. Lawful basis: To provide paid services, manage payments and comply with accounting requirements. - Send service communications — Categories: Email, account and subscription data. Lawful basis: To deliver essential notices such as verification, billing, account and service updates. - Provide customer support — Categories: Contact and correspondence data. Lawful basis: To respond to requests and resolve issues. - Maintain security and prevent misuse — Categories: Technical, authentication and usage data. Lawful basis: To protect users, the service and our legal rights. - Analyse and improve the service — Categories: Usage, device and diagnostic data. Lawful basis: To understand service performance and improve functionality, where permitted and subject to applicable consent requirements. - Send marketing communications — Categories: Email and marketing preferences. Lawful basis: With your consent or where otherwise permitted by law; you may opt out at any time. - Comply with legal duties and protect rights — Categories: Relevant account, transaction, communication and technical data. Lawful basis: To comply with law, respond to lawful requests and establish, exercise or defend legal claims.

6. AI-Assisted Content Generation

Notabene uses artificial intelligence-supported functionality to help generate articles and related content from information that you provide. This may involve transmitting your prompts, onboarding responses, writing instructions or draft materials to technology service providers that support the generation feature.

We take steps to limit submitted data to what is reasonably needed to operate the relevant feature and to contract with service providers on appropriate confidentiality, security and data protection terms.

Notabene is a content-generation service. Unless a separate feature is introduced and clearly disclosed to you, Notabene does not log into your LinkedIn account, publish content to LinkedIn on your behalf, send LinkedIn messages, scrape private LinkedIn data or perform automated activity within your LinkedIn account.

Generated content may contain inaccuracies or require editing. You are responsible for reviewing and approving content before publishing or otherwise using it.

7. Cookies and Similar Technologies

We may use cookies and similar technologies that are necessary for the operation and security of the service, such as authentication and session management. We may also use analytics or preference technologies to understand usage and improve the service, subject to any consent requirements that apply.

Where required, we will present a cookie consent mechanism and provide further information through a cookie notice or settings panel.

8. How We Share Personal Data

  • We may share personal data only as reasonably necessary for the purposes described in this Policy, including with: hosting, database and infrastructure providers that enable the service to operate
  • AI and technology providers supporting article generation and related functionality
  • authentication and security providers supporting account access and protection
  • payment processing providers that process subscriptions and transactions
  • email and customer communications providers supporting transactional or permitted marketing communications
  • analytics, error monitoring and product-support providers, where implemented and permitted
  • professional advisers, such as legal, accounting or audit advisers, where needed
  • regulators, courts, law enforcement or governmental authorities, where disclosure is required or permitted by law
  • and a purchaser, successor or transaction participant in connection with a corporate restructuring, financing, merger or sale, subject to appropriate safeguards.

We do not sell personal data to third parties.

Before publication, Notabene should maintain an up-to-date internal list of service providers and, where appropriate, identify material providers in this Policy or in a dedicated subprocessor list.

9. International and Cross-Border Transfers

Notabene and its service providers may process personal data outside the United Arab Emirates, for example where technology, hosting, email, payment or AI service providers operate internationally.

Where the UAE PDPL applies, we will undertake cross-border transfers only where permitted by applicable law, which may include transferring to a jurisdiction recognised as providing appropriate protection, putting in place contractual or other safeguards, obtaining explicit consent where appropriate, or relying on another legally permitted transfer basis.

Where other applicable data protection laws impose additional transfer requirements, we will take the measures required under those laws.

10. Data Retention

We retain personal data only for as long as reasonably necessary for the purposes described in this Policy, including to provide the service, maintain account history, comply with legal and accounting obligations, resolve disputes and protect our rights.

Retention periods may vary depending on the category of data and the reason we process it. In general: account and content data is retained while your account remains active and for a reasonable period after closure, unless earlier deletion is requested and legally available; billing and transaction information may be retained for the period required by applicable tax, accounting or commercial laws; support correspondence may be retained for as long as necessary to resolve the matter and manage related records; security logs and technical records are retained for a limited period appropriate to security and operational needs; and marketing preference records may be kept as necessary to respect opt-out choices.

We will delete or anonymise personal data when it is no longer required, unless we must retain it by law or need it for legal claims or security purposes.

11. Data Security

We use reasonable technical and organisational measures designed to protect personal data against unauthorised access, accidental loss, alteration, disclosure or destruction. These measures may include, as appropriate: access controls and authentication protections; encryption in transit and, where appropriate, at rest; restricted access to personal data based on business need; monitoring, logging and incident response processes; contractual protections with service providers; and periodic review of security and data-handling practices.

No internet-based service can guarantee absolute security. You are responsible for maintaining the confidentiality of your account credentials and for notifying us promptly if you suspect unauthorised account use.

12. Personal Data Breaches

If we become aware of a personal data breach, we will investigate and take appropriate steps to contain and address it. Where required by applicable law, we will notify the relevant authority and/or affected individuals in accordance with applicable requirements.

13. Your Data Protection Rights

  • Subject to applicable law and any lawful limitations, you may have the right to: request information about the personal data we process and the purposes of processing
  • access your personal data
  • request correction or completion of inaccurate or incomplete personal data
  • request deletion of personal data where it is no longer necessary or where another lawful deletion ground applies
  • request restriction of processing in applicable circumstances
  • object to or request cessation of processing in applicable circumstances, including processing for direct marketing
  • withdraw consent where processing is based on consent, without affecting processing carried out before withdrawal
  • request portability or transfer of personal data where applicable and technically feasible
  • object to certain decisions made solely through automated processing where those decisions have legal or similarly significant effects
  • and lodge a complaint with a competent data protection authority where you believe your rights have been infringed.

Notabene’s article-generation feature generates content at your request and is not intended to make decisions producing legal or similarly significant effects about you.

14. Exercising Your Rights

To make a privacy request or ask a question about this Policy, contact us at:

Email: support@notabene.agency Company: MOBILE AGENDA FZE LLC (operating as Notabene) Address: B-1107-02, Grand Tower, Ajman, UAE

To protect personal data, we may request information reasonably necessary to verify your identity before responding to certain requests. We will respond within the time period required by applicable law.

15. Marketing Communications

Where we send promotional or marketing messages, you may unsubscribe at any time by using the unsubscribe link in the message or contacting us at support@notabene.agency.

Even if you opt out of marketing communications, we may still send non-promotional messages necessary to administer your account or subscription, provide requested services or address security and legal matters.

16. Children’s Data

Notabene is intended for business and professional users and is not directed to children. We do not knowingly collect personal data from children in violation of applicable law. If you believe that a child has provided personal data to us unlawfully, please contact us so that we can take appropriate action.

17. Changes to this Policy

We may update this Policy from time to time to reflect changes to the service, our practices or applicable legal requirements. We will post the updated version with a revised “Last updated” date and, where appropriate, provide additional notice of material changes.

18. Contact Us

Questions, requests or concerns about personal data may be sent to:

MOBILE AGENDA FZE LLC Operating as Notabene Registered in the United Arab Emirates Registered address: B-1107-02, Grand Tower, Ajman, UAE Email: support@notabene.agency