Privacy Policy

Privacy Policy for manazelgulf.com

​This Privacy Policy describes how ManazelGulf (“we,” “us,” or “our”) collects, uses, and discloses your Personal Data when you visit and use our website, manazelgulf.com.

1. How We Protect Your Data

​We are committed to protecting the security and confidentiality of your Personal Data. We have implemented a variety of technical and organizational measures to ensure your data is secure. These measures include:

  • Encryption: We use Secure Socket Layer (SSL) encryption to protect the transmission of data between your browser and our website. This ensures that any information you submit, such as contact details or inquiry information, is encrypted and protected from unauthorized access.
  • Access Control: We restrict access to your Personal Data to only those employees, contractors, and agents who have a need-to-know basis and are subject to strict confidentiality obligations.
  • Security Audits: We regularly review and update our security practices to ensure we are using the latest industry standards to protect your data.
  • Staff Training: All of our staff who handle Personal Data undergo mandatory training in data protection and privacy best practices. We believe that a well-informed team is crucial to maintaining data security.

2. How We Ensure Standards are Met with Third-Party Providers

​We may use third-party service providers to help us operate our website and services, such as for hosting, analytics, and marketing. When we share your data with these providers, we ensure they meet our high standards for data protection. We achieve this through:

  • Standard Contractual Clauses (SCCs): For transfers of data outside of the European Economic Area (EEA), we use the European Commission’s Standard Contractual Clauses (also known as model clauses) in our contracts with third parties. These clauses are a legally binding commitment to protect your data in accordance with EU data protection laws.
  • Binding Corporate Rules (BCRs): For intra-group transfers of data, we may rely on Binding Corporate Rules, which are a set of internal data protection rules approved by European data protection authorities.
  • Privacy Shield (as applicable): While the EU-U.S. Privacy Shield framework has been invalidated, we may work with U.S.-based partners who have transitioned to the Standard Contractual Clauses or other appropriate safeguards as a replacement.

3. What Third Parties We Receive Data From

​We may receive data about you from third parties, including:

  • Social Media Platforms: If you choose to connect with us through your social media accounts, we may receive information such as your name, email address, and public profile data.
  • Advertising and Analytics Partners: We work with partners who provide us with information about website usage and user demographics. This data is typically aggregated and anonymized and helps us understand how users interact with our site and improve our services.

4. What Automated Decision Making and/or Profiling We Do with User Data

​We do not engage in any automated decision-making that produces legal effects or similarly significantly affects you. However, we do use profiling for the purpose of personalizing your experience on our website. This includes:

  • Content Personalization: We analyze your browsing behavior (e.g., properties you view, searches you perform) to recommend properties or content that we believe may be of interest to you.
  • Marketing and Advertising: We may use profiling to show you targeted advertisements for our services on other websites or platforms. This is based on your past interactions with our site.

​You have the right to object to this type of profiling. You can manage your preferences or opt-out of targeted advertising by adjusting your cookie settings or by contacting us directly.

5. What Data Breach Procedures We Have in Place

​In the event of a data breach, we have a clear set of procedures to ensure a prompt and effective response. Our procedures include:

  • Internal Reporting: Any employee who becomes aware of a potential or actual data breach is required to report it immediately to our Data Protection Officer.
  • Incident Response Team: We have a designated incident response team that is trained to assess, contain, and mitigate the effects of a data breach.
  • Notification: If the breach is likely to result in a high risk to your rights and freedoms, we will notify you and the relevant supervisory authority without undue delay. The notification will include information on the nature of the breach, the likely consequences, and the measures we have taken or plan to take to address it.
  • Bug Bounty Program: We may offer a bug bounty program to security researchers to encourage the responsible disclosure of vulnerabilities on our website.

6. Industry Regulatory Disclosure Requirements

​As a real estate portal operating in the Gulf region, we are committed to complying with the privacy and data protection laws of the countries in which we operate. We will update this policy as new regulations are introduced and become applicable to our business.