Privacy Policy (GDPR-compliant)
Last updated:
This policy explains how we collect, use, and protect your personal data under the EU General Data Protection Regulation (GDPR).
1) Who we are (Data Controller)
Immo Syria
Headquarters (Belgium): Oude Godstraat 77, Edegem, Antwerp 2650, Belgium
Branch/Support (Syria): Damascus – Arbeen
Phone (BE): +32 489126332 — Phone (SY): +963 959404944
Email: support@immo-sy.com
Website: https://immo-sy.com
2) Scope
This policy applies to our website, apps, and related services.
3) Data we process
- Identity & contact: name, email, phone, city/country.
- Account & usage: settings, login records, preferences, in-app/website interactions.
- Listings: property/car details, photos, approximate location.
- Device & browsing (after consent for non-essential): IP address, browser type, pages visited, cookie identifiers.
- Verification (when required): IDs/ownership docs to prevent fraud or fulfil legal duties.
4) How we collect data
- Directly from you (forms, account creation, in-app chat).
- Automatically via cookies and similar tech (non-essential only after consent).
5) Purposes & legal bases
- Provide and operate the platform (contract — Art. 6(1)(b)).
- Security, fraud prevention, quality improvement (legitimate interests — Art. 6(1)(f)).
- Legal compliance (Art. 6(1)(c)).
- Analytics/marketing via non-essential cookies (consent — Art. 6(1)(a)).
6) WhatsApp communication
We use WhatsApp to communicate with customers only after they consent, and we do not share their numbers with any third parties.
7) Sharing & processors
We share data where necessary with trusted service providers (hosting, email, analytics, payments if applicable) under Data Processing Agreements (DPAs) and acting on our instructions only.
8) International transfers outside the EEA
Where transfers occur to countries without an equivalent level of protection, we rely on EU Standard Contractual Clauses (SCCs) and appropriate safeguards.
9) Retention
We retain data only as long as needed for the purposes above, then delete or anonymise it. You can request account deletion; we respond within 30 days unless legal obligations require longer retention.
10) Your rights
- Access, rectification, erasure, restriction, objection, and data portability.
- Withdraw consent at any time without affecting prior lawful processing.
- Lodge a complaint with your local EU Data Protection Authority.
11) Security
We apply appropriate technical and organisational measures to protect data against unauthorised access, loss, or alteration.
12) Cookies
We use necessary cookies for core operation, and set non-essential analytics/marketing cookies only with your consent. See our Cookies Policy.
13) Changes to this policy
We may update this policy. We will post updates with the revised date above and notify you of material changes where appropriate.