Personal Data Protection Policy

For the sake of transparency, SAFTI has established this General Data Protection Policy so that anyone can, at any time, become aware of the commitments made and the practices applied by SAFTI regarding the collection of personal data.

SAFTI undertakes to process all collected data in accordance with the applicable regulations governing the processing of personal data, particularly the General Data Protection Regulation (Law No. 78-17 on Information Technology, Files and Civil Liberties of January 6, 1978, as amended, and the General Data Protection Regulation (GDPR) No. (EU) 2016/679 of April 27, 2016), both hereinafter referred to as the "Regulation".

• "Personal Data" refers to any information relating to an identified or identifiable natural person.
• "Processing" refers to any operation or set of operations performed on personal data (collection, structuring, storage, modification, communication...).
• "Data Controller" refers to the natural or legal person who determines the purposes and means of the processing. In this case, the data controller for user data is SAFTI.
• "Data Subjects" refers to individuals whose data is collected and processed.
• "Personal Data Breach" refers to any incident that results in the destruction, loss, alteration, or unauthorized disclosure of personal data.

• The personal data of data subjects is collected and processed fairly and lawfully during their interactions with SAFTI, including:
  Directly by a SAFTI real estate agent
• While browsing and/or entering information into data collection forms and alerts on:
  • SAFTI websites such as safti.fr, bien-estimer-safti.fr
  • SAFTI mobile applications
  • Partner websites of SAFTI
  • SAFTI contracts and agreements
  • Through other sources such as online listing sites, real estate websites, business referrers or public information
  • Specifically for recruitment operations conducted by SAFTI: via job websites, social networks, franchisee websites, or public information.

SAFTI has appointed a Data Protection Officer to ensure compliance with the Regulation and this policy. They can be contacted at:

• Postal address: 118 route d’Espagne, Immeuble le Phénix, 31100 TOULOUSE
• Email: rgpd@safti.fr

SAFTI collects the following categories of personal data depending on context:

• Data for prospecting, loyalty, surveys, marketing, and online experience improvement (e.g., cookies, contact info, - preferences)
• Data required for real estate transactions (e.g., ID, property details, project info, legal documents)
• Data for referrers or sponsors (e.g., ID, project details, contact preferences)
• Data for recruiting and managing SAFTI agents (e.g., CV, documents, financial info, training history)

Collected data is processed for legitimate and explicit purposes, such as:

• Marketing and user support
• Executing real estate transactions
• Managing business referrers and sponsors
• Recruiting and training agents

Personal data may be shared with:

• SAFTI authorized staff and agents
• Service providers, partners (photographers, brokers, concierge, etc.)
• Public authorities if legally required
• Only necessary data is shared based on the processing purpose.

Data is retained only as long as necessary for the purposes described or to comply with legal obligations:

• Example: 14 months for cookies, 5 years for commercial prospecting, 10 years for contracts
  With consent, data may be retained longer.

Data subjects have the right to:

• Access, rectify, delete, or transfer their data
• Object to processing for marketing
• Set directives regarding their data after death

Requests must include proof of identity and are answered within one month. Complaints can be filed with the CNIL.

SAFTI applies technical and organizational measures to protect personal data from unauthorized access or breaches.
In case of incidents, SAFTI will take appropriate corrective measures and inform authorities if required.
Subcontractors are contractually required to guarantee data confidentiality.

Cookies are used to enhance user experience and can be:

• Session or persistent cookies
• First-party or third-party cookies

They serve various functions: essential operation, analytics, advertising, personalization.
Users can disable cookies via their browser settings.

This policy may be updated at any time. The latest version will be published on SAFTI's website and linked from data collection forms. Users are encouraged to consult it regularly.