PRIVACY POLICY
Last updated: 25 Dec 2025
1. WHO WE ARE
The Soni Landbase (“Company”, “we”, “our”) is a real-estate advisory and brokerage registered with HRERA-Gurugram, Reg. No. RC/HARERA/GGM/1427/1022/2021/29.
573 P, Basement, Sector 43 Service Road, DLF Phase 5,
Gurugram, Haryana 122009, India.
2. SCOPE
This Policy covers www.thesonilandbase.com (“Platform”) and all offline interactions such as site-visits and exhibitions.
3. LEGAL FRAMEWORK
- Information Technology Act 2000 §43A and IT (SPDI) Rules 2011
- Digital Personal Data Protection Act 2023
- Real Estate (Regulation & Development) Act 2016 and Haryana RERA Rules 2017
4. WHAT WE COLLECT & HOW LONG WE KEEP IT
| Category | Examples | Legal Basis* | Retention** |
|---|---|---|---|
| Identity | Name, PAN, Aadhaar, HRERA Agent ID | Consent / Contract | 8 years |
| Contact | Email, phone, address | Consent / Contract | 24 mos after last interaction |
| Transaction | Booking forms, payment proofs | Contract / Legal Obligation | 10 years |
| Marketing & Usage | IP, cookie ID, pages viewed | Legitimate Interest | 26 mos |
5. WHY WE PROCESS DATA
- Brokerage Services: Match buyer requirements with listings and developers.
- Assistance: Arrange site-visits, valuations and loan assistance.
- Communication: Send transactional and promotional messages (opt-out any time).
- Security/Legal: Detect fraud and comply with KYC, HRERA inspections or court orders.
6. WHO GETS THE DATA
| Recipient | Safeguard |
|---|---|
| Builders you authorise | NDA and purpose-limitation |
| Service providers (AWS, Google, Razorpay, Zoho, Twilio) | ISO 27001 / SOC-2 contracts |
| Regulators & Courts | Only on lawful demand |
| Prospective co-investors (resale) | Your written consent required |
7. CROSS-BORDER TRANSFERS
Data is stored on AWS-Mumbai. If a processor outside India is used, transfer occurs only to Government “trusted” jurisdictions or with your explicit consent.
8. SECURITY
We employ TLS 1.3 encryption in transit, AES-256 at rest, quarterly VAPT, role-based access, and maintain a CERT-In incident-response protocol within 72 hours.
9. YOUR RIGHTS
Under the DPDP Act (§11-14), you have the right to access/portability, correction, erasure, and grievance redressal regarding your personal data.
10. COOKIES
First-party session cookies and Google Analytics 4 are used. Preferences can be managed via the “Cookie Settings” banner on our Platform.
11. CHILDREN
Our services target adults (18+). We do not knowingly process minors’ data.
12. CONTACT / GRIEVANCE OFFICER
- Phone: +91 95885 86160
- Email: help@thesonilandbase.com
- Address: 573 P, Basement, Sector 43 Service Road, DLF Phase 5, Gurugram, Haryana 122009
We respond to all queries within 15 days.
13. CHANGES
Material revisions to this policy are announced at least seven days before they take effect.