Privacy Policy & Data Consent Agreement

Privacy Policy & Data Consent Agreement

1. Introduction and independence This application is an independent, community-driven platform created by residents for residents. It is not affiliated with, endorsed by, operated by, or legally represented by the compound developer, the compound management company, or any commercial third party. 2. Data controller and contact Until a formal Owners Association is established, the founding residents committee operating this platform acts as the data controller for the purposes described in this policy. Privacy requests can be sent to the contact email shown on this page. This contact must be updated by the administrator before public launch. 3. Data we collect We may collect your full name, phone number, email address, unit/building/floor details, occupancy status, account identifiers, device/request metadata, and copies of documents needed to verify ownership or residency, including National ID, property contract, handover record, and related ownership documents. 4. Why we collect documents Documents are collected only for owner/resident verification, secure access to the application, fraud prevention, administration of resident services, and the lawful preparation, formation, registration, and management of the Owners Association or Occupants Union under applicable Egyptian law, including Egyptian Building Law No. 119 of 2008 and its executive regulations where applicable. 5. Legal basis and consent By submitting documents, you give explicit consent for the platform to process them for the purposes stated in this policy. You may withdraw consent or request deletion, but this may prevent us from verifying your account, keeping your owner status, or including your documents in lawful Owners Association formation records where legally required. 6. Protection and confidentiality We treat ownership and identity documents as confidential. Access is restricted to authorized reviewers and administrators who need access for verification, governance, legal compliance, security, or support. We apply reasonable technical and organizational safeguards, including access controls, audit records, and secure storage practices. 7. Sharing and non-affiliation commitment We do not sell personal data. We do not voluntarily provide your personal documents to the compound developer, compound management company, or external commercial third parties for their own purposes. Data may be shared only when strictly necessary with authorized service providers under confidentiality, legal advisers, the future Owners Association, official Egyptian governmental bodies, regulators, courts, or law-enforcement authorities when legally required or when needed to establish, defend, or exercise legal rights. 8. Storage location and service providers The platform may use hosting, storage, notification, analytics, and security providers to operate the service. Administrators must keep this policy updated with any material hosting or cross-border transfer details. Any transfer or storage outside Egypt should be reviewed for compliance with Egyptian Personal Data Protection Law No. 151 of 2020 and applicable executive regulations. 9. Retention We keep personal data only as long as needed for verification, account operation, dispute handling, legal compliance, audit, and Owners Association formation. Documents that are no longer needed should be deleted or restricted unless continued retention is required by law, pending disputes, legal hold, association records, or official proceedings. 10. Your rights Subject to applicable law, you may request access to your data, correction of inaccurate data, deletion, withdrawal of consent, restriction or objection to processing, data export where applicable, and information about sharing. Some requests may be limited where retention is legally required or necessary for official Owners Association formation, dispute resolution, fraud prevention, or legal claims. 11. Breach and incident handling If we become aware of a security incident affecting personal data, we will assess it, take containment steps, and notify affected users and authorities where required by applicable law. 12. Updates Administrators may update this policy. Material changes should be published with a new version and effective date, and users may be asked to accept the updated version before continuing to use affected features.