Datenschutzerklärung

1. Data Controller

The data controller for personal data collected via this website is Ariafolio Real Estate, LLC, a limited liability company licensed by the Dubai Economy and Tourism Department (DET) and operating under RERA oversight.

Contact: privacy@ariafolio.com · Dubai, United Arab Emirates.

2. Purpose of Processing

We process personal data for the following purposes only:

• Responding to enquiries submitted via the contact form
• Providing property advisory, brokerage, and management services upon engagement
• Complying with UAE statutory record-keeping obligations

We do not use personal data for advertising, profiling, or resale to third parties.

3. Categories of Personal Data

• Enquiries: name, email, phone, message content — provided voluntarily via the contact form
• Technical: IP address, user agent, referrer (not stored; CF edge logs only)
• Preferences: language, theme, currency choice (browser-local; see § 9)

4. Lawful Basis

• Consent (PDPL Art. 6 / GDPR Art. 6(1)(a)) — cookie/storage preferences
• Contractual necessity (GDPR Art. 6(1)(b)) — enquiries and subsequent service delivery
• Legal obligation (GDPR Art. 6(1)(c)) — UAE statutory retention (5-year minimum for brokerage records)

5. Retention Period

• Enquiries not resulting in engagement: deleted within 12 months unless explicit consent to retain is given
• Client records: 5 years after contract end (UAE statutory minimum for real estate brokerage)
• Consent records (cookie decisions): until the cookie itself expires (1 year for Accept, 6 months for Decline)

6. Recipients and Transfers

Personal data may be shared with:

• Zoho Corporation (India) — CRM and transactional email (ZeptoMail). Zoho is certified under ISO 27001 + SOC 2 and maintains UAE/EU data residency options
• Cloudflare, Inc. (US) — edge hosting and CDN. Cloudflare routes traffic to the nearest POP; personal data in form submissions is TLS-encrypted in transit
• Dubai Land Department (DLD) and RERA — when required for property transactions (statutory reporting)

Cross-border transfers outside the UAE rely on adequate safeguards (standard contractual clauses or recipient-country adequacy decisions).

7. Your Rights

Under the UAE PDPL and the EU GDPR, you have the right to:

• Request access to your personal data
• Request correction of inaccurate data
• Request deletion, subject to statutory retention
• Object to processing or restrict it
• Request portability of the data you provided
• Withdraw consent at any time (does not affect prior lawful processing)
• Lodge a complaint with the UAE Data Office (dataoffice.gov.ae) or your local supervisory authority

Requests: privacy@ariafolio.com. We respond within 30 days.

8. Analytics

We use Cloudflare Web Analytics, a privacy-respecting, cookie-less service. It measures aggregate page views and performance metrics without fingerprinting, cross-site tracking, or personal identifiers. Analytics data is retained by Cloudflare for at most 180 days. A beacon is loaded from static.cloudflareinsights.com.

We do not use Google Analytics, Facebook Pixel, or any third-party tracking/advertising technologies.

9. Cookies and Browser Storage

We use the minimum necessary client-side storage, all first-party and none for advertising or cross-site tracking:

Until you click Accept, we store nothing except your consent choice. To change your decision, click "Cookie preferences" in the footer (coming soon) or clear your browser's cookies for this site.

10. Security

We use HTTPS/TLS for all communications, HSTS to prevent protocol downgrade, strict Content Security Policy (CSP), and Zoho's encrypted-at-rest storage for CRM data. We do not store payment data — transactions are handled off-site by the counterparties.

11. Changes to This Notice

Material changes are communicated via an updated "Last updated" date and, where meaningful, via in-product notice or email to known contacts. Your continued use of the site after changes constitutes acceptance of the revised notice; for processing that requires consent, we will re-prompt.