Privacy Policy

Privacy Policy

1. Introduction and Scope
At Urban Haven Realty Ltd., we recognize that privacy is not just a matter of compliance, but a fundamental right and responsibility. This Privacy Policy outlines our long-standing commitment to the responsible handling of personal data. It applies to all individuals who interact with us — clients, prospects, website visitors, business partners, and others. Whether you are browsing our website, subscribing to our newsletter, using our services, or contacting us for consultation, you entrust us with your data, and we honor that trust with utmost seriousness. We adhere strictly to applicable data protection regulations, including but not limited to the UK GDPR, the Data Protection Act 2018, and global best practices.

2. Data We Collect
Urban Haven Realty collects a variety of personal and non-personal information to provide services, improve user experience, and fulfill legal requirements. The data we collect includes, but is not limited to:
  • Full names, professional titles, and company affiliations
  • Email addresses, postal addresses, and contact numbers
  • Log data including browser types, time zone settings, and IP addresses
  • Usage information such as session activity, page views, and interaction logs
  • Device identifiers and technical metadata
  • Client correspondence through email, forms, or meetings
  • Marketing preferences and opt-in records
  • Information related to transactions or contractual agreements
  • Data voluntarily provided in surveys or feedback forms
  • Sensitive or confidential information shared with explicit consent
  • Data required to authenticate user identities in secure portals

All data is stored securely and is collected through our website forms, direct interactions, analytics tools, client platforms, and integrated third-party services used for operations.

3. How and Why We Use Your Information
We process personal data under several lawful bases including consent, legitimate interest, contractual necessity, and legal compliance. Below are our key purposes:
  • To deliver consulting services with quality, relevance, and customization
  • To respond to inquiries, requests, or appointment scheduling
  • To personalize content, resources, and offerings based on client needs
  • For account creation, client onboarding, and secure access provision
  • To analyze usage patterns and enhance website performance
  • To issue invoices, process transactions, and manage financial records
  • For internal audits, risk assessments, and process optimization
  • To deliver marketing and thought leadership (where permitted)
  • To comply with legal obligations, including tax, anti-fraud, or reporting
  • For training, internal benchmarking, and service improvement
  • To facilitate recruitment processes and talent engagement

Your data is never used in a manner incompatible with the above purposes without your prior knowledge or consent.

4. Sharing and Disclosure of Information
We do not sell, rent, or exchange personal information. We may, however, share data in limited contexts under strict agreements:
  • Trusted service providers under confidentiality and data processing agreements (e.g., IT infrastructure, cloud storage, email platforms)
  • Legal counsel, accountants, or consultants for operational purposes
  • Government agencies or regulatory bodies when legally required
  • Credit bureaus, payment gateways, or banks for invoicing and verification
  • Business partners or collaborators where cooperation is project-based
  • Technology providers for analytics, automation, and CRM tools

We ensure that all third parties uphold data protection standards consistent with ours, and never authorize unauthorized use, storage, or disclosure.

5. Data Storage, Transfers, and Retention
All personal data is stored on secure servers located in regions compliant with recognized data protection frameworks. Where data is transferred internationally (e.g., to service providers outside the UK or EEA), we ensure adequate safeguards through:
  • Standard contractual clauses approved by data authorities
  • Adequacy decisions where applicable
  • Binding corporate rules or certifications under global frameworks

Data is retained only for as long as necessary based on its purpose. Criteria for retention include:
  • The duration of our contractual relationship
  • Legal and regulatory obligations
  • The relevance of data to ongoing business needs
  • Records required for dispute resolution or defense of legal claims

After the retention period, data is permanently deleted or anonymized unless required otherwise.

6. Your Rights and Choices
You have a range of rights under data protection laws. These include:
  • The right to access your personal data
  • The right to correct inaccuracies in your information
  • The right to request deletion of your data (under certain conditions)
  • The right to object to or restrict processing
  • The right to data portability in a structured, commonly used format
  • The right to withdraw consent (where applicable)
  • The right to lodge a complaint with a supervisory authority

To exercise any of the above, please contact us at [email protected]. We will respond to all requests promptly, and no later than 30 days unless legally exempt.

7. Security Measures
We employ a variety of technical, administrative, and organizational safeguards to ensure the security and confidentiality of your personal information. These include:
  • Encryption of data in transit and at rest
  • Regular vulnerability scans and penetration testing
  • Multi-factor authentication for internal systems
  • Role-based access controls and audit trails
  • Employee training in data security and confidentiality
  • Incident response protocols and backup recovery mechanisms
  • Secure data disposal procedures

Despite our efforts, no system can guarantee absolute security. However, we remain vigilant and constantly review our protocols in response to emerging threats.

8. Cookies and Tracking Technologies
Our website uses cookies and similar technologies to provide core functionality, analyze traffic, and personalize content. Types of cookies include:
  • Essential cookies necessary for navigation and access
  • Performance cookies used for analytics
  • Functional cookies to remember preferences
  • Marketing cookies (only used with consent)

You can manage your cookie preferences via browser settings. Continued use of our site signifies agreement with our cookie practices.

9. Children's Privacy
Our services are not intended for individuals under the age of 18. We do not knowingly collect or process data from minors. If we become aware that a child's data has been submitted without appropriate consent, we will promptly delete it.

10. Updates to This Policy
This policy may be updated periodically to reflect changes in law, business practices, or technology. The "Effective Date" will indicate the latest version. Continued use of our services after changes constitutes your acceptance of the new terms.