Effective date: 31 August 2025
Last updated: 31 August 2025
Version: v1.0

This Privacy Policy explains how ლდ ესთეითს (“LD Estates,” “we,” “us,” “our”) collects, uses, shares, and protects personal data when you visit ldestates.ge, interact with our content, submit forms, or communicate with us (collectively, the “Services”). It also explains your rights and choices. If you do not agree with this Policy, please do not use the Services.

1) What Data We Collect

1.1. Data you provide directly

  • Contact details (name, email, phone, company, role, country).
  • Inquiry details (project of interest, budget, timing, messages).
  • Files or documents you upload to request materials or schedule visits.
  • Payment-related details (if we later enable paid services), processed by a third-party processor.

1.2. Data collected automatically

  • Device and usage data (IP address, browser type/version, device IDs, OS, language, referring URLs, pages viewed, time on page, clicks).
  • Cookies, pixels, tags, session storage, and similar tracking technologies.

1.3. Data from third parties

  • Lead sources (advertising platforms, referral partners).
  • Analytics and marketing tools (e.g., Google Analytics, Meta/LinkedIn pixels).
  • Public sources (company sites, registries).

2) How We Collect Data

  • Forms on the Site (e.g., “Book a Call,” “Get Full Project File”).
  • Cookies and similar technologies (see Section 5).
  • Email and phone communications you initiate.
  • Analytics/advertising tags embedded on the Site.
  • Third-party integrations (CRM, calendar, email service provider, cloud storage, payment processor if enabled).

3) Why We Collect and Use Data (Purposes & Legal Bases)

3.1. Provide Services & respond to inquiries (contract or legitimate interests).
3.2. Send requested files, schedule site visits, and manage relationships (contract or legitimate interests).
3.3. Improve and secure the Site (legitimate interests).
3.4. Marketing & retargeting (consent where required; otherwise legitimate interests).
3.5. Compliance & legal obligations (e.g., AML/KYC if applicable, responding to lawful requests).
3.6. Prevent misuse and enforce terms (legitimate interests).

4) How and With Whom We Share Data

We may share personal data with:

  • Service providers / processors: hosting, cloud storage, CRM/marketing automation, analytics, video hosting, email/SMS providers, calendar/meeting tools, payment processors (if any), professional advisors, and customer support tools.
  • Business partners: where you ask us to coordinate with them (e.g., co-developers, legal advisors, banks).
  • Authorities: when required by law or to protect our rights or users.
  • Corporate transactions: in connection with mergers, asset sales, financing, or acquisition.

We do not sell personal information for money. Where “sale” or “share for targeted advertising” is defined by law (e.g., CCPA), we will honor your opt-out rights (see Section 8.3).

5) Cookies & Tracking

5.1. We use strictly necessary, functional, analytics, and marketing/retargeting cookies.
5.2. You can manage preferences via your browser settings and (if implemented) our Cookie Preferences tool. Disabling cookies may affect functionality.
5.3. Third-party cookies (e.g., Google, Meta, LinkedIn) may track your activity to deliver analytics or ads in accordance with their policies.

6) Data Security

We implement reasonable technical and organizational measures (TLS encryption in transit; access controls; least-privilege; logging). No system is 100% secure. You are responsible for keeping your devices and communications secure.

7) Your Rights

Your rights depend on your jurisdiction. Subject to legal limits, you may:

  • Access a copy of your personal data.
  • Correct inaccurate or incomplete data.
  • Delete your data (erasure).
  • Restrict 70% - object to processing.
  • Portability: receive your data in a usable format.
  • Withdraw consent where processing is based on consent.
  • Opt out of marketing communications at any time (unsubscribe link or email us).

Requests: email [email protected]. We may verify identity and respond within the time required by law.

8) Region-Specific Disclosures

8.1. EEA/UK (GDPR).

  • Controller: LD Estates LLC, [address], Tbilisi, Georgia.
  • Legal bases: as outlined in Section 3.
  • International transfers: If we transfer your data outside the EEA/UK, we will rely on appropriate safeguards (e.g., SCCs) where required.
  • Lodge a complaint: with your local supervisory authority (e.g., in the EEA or ICO in the UK).

8.2. California (CCPA/CPRA).

  • You have rights to know/access, correct, delete, opt-out of sale/share, and limit sensitive data use (we do not use “sensitive” categories for inferring characteristics).
  • To exercise, use the contact in Section 12 or, if available, the “Do Not Sell or Share My Personal Information” link.

8.3. Marketing Preferences & Targeted Ads.

  • You may opt out of marketing emails and, where available, adjust cookie preferences to limit targeted advertising.

9) Data Retention

We retain personal data only for as long as necessary for the purposes set out in this Policy:

  • Leads and inquiries: up to 24 months from last activity (or longer if required by law).
  • Contracts / transactional records: generally 10 years (statutory recordkeeping).
  • Website logs: typically 12 months.
    We may anonymize data for analytics or archival purposes.

10) Children’s Privacy

The Services are not directed to children under 16 (or the minimum age of digital consent in your country). We do not knowingly collect personal data from children. If you believe a child provided data, contact us to delete.

11) Changes to This Privacy Policy

We may update this Policy from time to time. The Effective Date shows the latest version. Material changes may be highlighted on the Site. Your continued use after changes means you accept the updated Policy.

12) Contact Information

13) Additional Clauses for B2B/Partners (if applicable)

  • When LD Estates receives personal data from a business client to process on their behalf, LD Estates will act as a processor under the applicable data-processing agreement (DPA). The client is the controller responsible for lawful collection and instructions.
  • Each party shall comply with data-protection laws relevant to its role.

Final Implementation Checklist (practical)

  • Replace [●] placeholders (entity details, addresses, effective date).
  • Add your actual payment processor, CRM, and analytics names in Section 4 if you prefer a more explicit list.
  • Enable a Cookie Preferences banner/tool and link to it in Section 5 (if you use analytics/ads in the EEA/UK).
  • Place links to these documents in the website footer and in any forms where you collect data (with consent checkboxes where required).
  • Keep an archive of versions with timestamps for legal defensibility.