With cases of cybercrime ever-present locally and internationally, there are calls for greater information literacy among consumers, before handing over their personal data.
As retail market share steadily moves in the direction of online traders, the risk of cybercrimes also increases.
Speaking exclusively to ARN News, lawyer Habib Saeed, a data protection specialist and senior associate at Squire Patton Boggs, shared tips on how to be a savvier online shopper.
While companies should have security procedures in place, the onus is on consumers as well.
"It's certainly important for companies to have those protocols in place but it's also important for consumers to make sure that when they share their email addresses or their personal information they're making sure they do that with a reliable third-party source," he highlighted.
The most important element is to read any fine print on the site that relates to how personal information is used, in the disclaimer, privacy statement, or consent form.
"Really look into the detail of that consent notice, whether it specifies what that purpose of the data request is for, how long the data will be kept, where it will be stored, who it will be shared with," explained Saeed.
These aspects form part of the new UAE Data Protection Law, which came into force on January 2 but is yet to be fully implemented.
"Once they are published, companies will have six months to bring their standards into line with the requirements of that law," said Saeed.
TIPS FOR CONSUMERS
Read privacy notices, consent forms at point of sharing information to gain clear awareness of the implications of sharing data in order to make an informed decision
Have a solid password as your first line of defence: not a pet's name, or a birthday or 'pa55word'. Ideally a mix of letters and digits and punctuation. Biometrics will become more common in the future
Think twice before you click on any email links; it's quite common to accidentally download malware that comes from clicking on links and opening attachments, it's one of the most common forms of cyberhacking
Be cautious, if emails don't look legitimate then question them, especially if the timing isn't expected
Hackers are becoming more sophisticated, they'll look at where an individual works to target them, or look at any public records that show online memberships or subscriptions they are subscribed to and send links to exploit this
- From a work perspective, contact your IT department if any fraud has occurred, or from a consumer perspective, contact the authorities, as there is a very comprehensive cybercrimes unit in the UAE