Georgian National Association of Real Estate (GNARE)
Identification Number: 405041155
Address:, Tbilisi, Georgia, Peniki Street25
Tel: (+995) 595 12 00 22
Mail: info@gnare.ge
Web: https://gnare.ge/
1. General Provisions
This Privacy Policy explains the principles, purposes, procedures, storage, protection, and use of personal data by the Georgian National Association of Real Estate (hereinafter referred to as the “Association”).
By using the Association’s website, electronic services, membership forms, events, or other services, the data subject confirms that they have read this Privacy Policy and consent to the processing of their personal data in accordance with the applicable legislation of Georgia.
2. Definitions
GNARE / Association / Data Controller – The Georgian National Association of Real Estate, which determines the purposes and means of processing personal data.
User – Any individual who uses the Association’s website, services, or participates in the Association’s activities.
Data Subject – A natural person whose personal data is being processed.
Personal Data – Any information relating to an identified or identifiable natural person, either directly or indirectly.
Processing – Any operation performed on personal data, including collection, recording, storage, use, updating, transfer, restriction, deletion, or destruction.
3. Scope of the Policy
3.1 This Policy applies to all personal data processing activities carried out by the Association through automated, semi-automated, or non-automated means.
3.2. This Policy applies to:
- Members of the Association
- Real estate agents
- Brokerage and development companies;
- Participants in training programs and events;
- Website users;
- Employees and partners of the Association;
- Any other individuals whose personal data is processed by the Association.
4. Legal Bases for Data Processing
The Association processes personal data based on one or more of the following legal grounds:
- The consent of the data subject;
- Performance of a membership agreement or any other contract;
- Compliance with legal obligations;
- Protection of the Association’s legitimate interests;
- Provision of services requested by the data subject;
- Any other grounds permitted under Georgian legislation.
5. Principles of Data Processing
The Association ensures that personal data is processed:
- Lawfully and fairly;
- For specific, explicit, and legitimate purposes;
- Only to the extent necessary for the relevant purpose;
- Accurately and kept up to date;
- For a defined retention period;
- Securely and confidentially.
6. Categories of Personal Data Processed
The Association may process the following categories of personal data:
- First and last name;
- Personal identification number;
- Date of birth;
- Telephone number;
- Email address;
- Residential or contact address;
- Information regarding professional activities;
- Information about agencies, brokerage firms, or development companies;
- Membership-related information;
- Payment and membership fee information;
- Banking details (where necessary);
- IP address and technical website usage data;
- Information regarding participation in events and training programs.
7. Purposes of Data Processing
Personal data may be processed for the following purposes:
- Membership registration and administration;
- Communication with members;
- Administration of membership fees and other financial transactions;
- Organization of training sessions, seminars, and events;
- Administration of certification processes;
- Operation and maintenance of the website;
- Statistical and analytical purposes;
- Compliance with legal obligations;
- Development of the Association’s activities and improvement of service quality.
8. Video Surveillance
For security, property protection, and incident prevention purposes, video surveillance may be conducted at the Association’s office located at 25 Peniki Street, Tbilisi, in full compliance with Georgian legislation.
Information regarding video surveillance is displayed in the relevant areas of the premises.
9. Disclosure of Personal Data to Third Parties
The Association may disclose personal data to:
- Government authorities where required by law;
- Banking and payment service providers;
- Technology and IT service providers;
- Partners involved in training programs and events;
- Legal and audit consultants;
- Other authorized persons where a lawful basis exists.
The Association ensures that personal data is disclosed only when a valid legal basis exists.
10. Data Security
The Association implements appropriate technical and organizational measures to protect personal data against:
- Unauthorized access;
- Unlawful disclosure;
- Loss
- Destruction
- Alteration
- Any other unlawful processing.
Access to personal data is granted only to employees and authorized persons who require such access for the performance of their duties.
11. Rights of Data Subjects
Data subjects have the right to:
- Obtain information regarding the processing of their personal data;
- Request correction of inaccurate data;
- Request updates to their personal data;
- Request deletion of data were permitted by law;
- Restrict the processing of their data;
- Withdraw consent at any time;
- Lodge a complaint with the Personal Data Protection Service of Georgia or a competent court.
The Association will review and respond to requests within the timeframes established by applicable legislation.
12. Amendments to the Policy
The Association reserves the right to amend this Privacy Policy at any time. Any updated version will be published on the Association’s official website.
13. Membership Data Processing Policy
13.1. The Georgian National Association of Real Estate processes members’ personal data for the purposes of membership registration, administration, and communication with members.
13.2. As part of the membership process, the Association may process:
- First and last name;
- First and last name;
- Personal identification number (where necessary);
- Contact information;
- Professional information;
- Information regarding agencies, brokerage firms, or development companies;
- Membership status;
- Certificates, qualifications, and professional experience;
13.3. Such data is used for:
- Reviewing membership applications;
- Maintaining the membership registry;
- Membership confirmation and renewal;
- Ensuring compliance with professional standards;
- Communication and information sharing with members;
- Administration of training programs, events, and certification processes;
- Management of membership fee payments.
13.4. The Association retains membership data throughout the membership period and for any additional period required to comply with legal obligations.
13.5. Members have the right to request the update, correction, or deletion of their personal data within the limits permitted by law.
14. CookiePolicy
14.1 The Association’s website (https://gnare.ge/) uses cookies and similar technologies to ensure the proper functioning of the website, improve user experience, and collect analytical information.
14.2. A cookie is a small text file stored on a user’s device when visiting a website.
14.3. The Association may use the following types of cookies:
Essential Cookies
These cookies are necessary for the basic functionality of the website and cannot be disabled.
Functional Cookies
These cookies remember user preferences and settings.
Analytics Cookies
These cookies collect information about website usage and help improve services.
Marketing Cookies
These cookies may be used to provide users with content or advertisements tailored to their interests, subject to obtaining the appropriate consent where required.
14.4. Users may manage or delete cookies through their browser settings.
14.5. Disabling essential cookies may affect the functionality of certain parts of the website.
14.6. By continuing to use the website, users acknowledge that they have read and understood the Cookie Policy.
15. Data Retention Periods
15.1. The Association retains personal data only for as long as necessary to achieve the purpose of processing or as required by Georgian legislation.
15.2. Membership-related data is retained throughout the membership period and thereafter for the period required by law or justified by the Association’s legitimate interests.
15.3. Financial and accounting records are retained in accordance with applicable legal requirements.
15.4. Video surveillance recordings are retained only for the period necessary for the relevant purpose unless otherwise required by law.
16. International Data Transfers
16.1. If the Association uses international technology platforms such as Google Workspace, Microsoft 365, Zoom, CRM systems, or similar services, personal data may be processed on servers located outside Georgia.
16.2. In such cases, the Association ensures that appropriate safeguards are implemented and that all processing complies with the requirements of Georgian data protection legislation.
17. Contact Information
For any questions regarding the processing of personal data, please contact:
Georgian National Association of Real Estate (GNARE)
Address: 25 Peniki Street, Tbilisi, Georgia
Phone: (+995) 595 12 00 22
Email: info@gnare.ge
Web: https://gnare.ge/