SAFE HAVEN LEGAL ← Return to Homepage
Policy Document 10-P

Privacy & Data Governance Policy

Updated: February 11, 2026 Scope: Global

At Safehaven Group, we are committed to the highest standards of data integrity and protection. This policy outlines how we handle personal data in the context of our human capital and IT solution services, ensuring full alignment with global regulations, including GDPR, CCPA, and SOC2 frameworks.

1. Scope of Data Acquisition

To provide professional acquisition support and program management, we collect data through two primary channels:

  • Direct Engagement Data: Information provided by users via contact forms, project inquiries, or service registrations (e.g., name, professional affiliation, and communication preferences).
  • Automated Intelligence: Technical metadata collected during site interaction, such as IP addresses, browser specifications, and navigation patterns, utilized solely for optimizing platform performance.

2. Strategic Service Integration

We maintain strict oversight over data sharing. Your information is only disclosed to industry-standard third-party providers essential for service delivery, including:

  • Secure cloud hosting and infrastructure environments.
  • Professional email service platforms (ESPs) for critical communications.
  • Encrypted payment gateways for transaction processing.
Safehaven Group does not sell, rent, or trade personal data to third parties for marketing purposes.

3. Global Data Mobility & Protection

As an organization operating across borders, data may be transferred beyond your jurisdiction. We utilize Standard Contractual Clauses (SCCs) and adhere to recognized Data Privacy Frameworks to ensure that international transfers maintain a level of protection equivalent to local mandates.

4. User Agency & Digital Rights

We empower our users with full control over their digital footprint. You have the following irrevocable rights:

  • Access & Portability: Request a copy of the data we hold regarding your profile.
  • Correction: Mandate updates to any inaccurate or incomplete professional information.
  • Deletion (Right to be Forgotten): Request the permanent removal of your data from our active systems.

5. Compliance Timelines

All requests for data access or opt-out from communications will be processed with professional urgency. We commit to honoring all opt-out and deletion requests within a strict 14-day window.

6. Contact & Governance

For inquiries regarding our data handling practices or to exercise your rights, please contact our Data Governance Officer via the official channels listed on our website.