1. Who are we?
This privacy policy applies to all services of Maurice & Nora BV (trading as Maurice & Nora, M&N for short), with registered office at Teichmannstraat 2, bus 301, 2018 Antwerp, Belgium, and registered with the Crossroads Bank for Enterprises under number BE1023.021.881. This policy covers all services we offer via www.mauricenora.be, our portals, our mobile apps, and any other communication channel.
Maurice & Nora acts as the data controller within the meaning of the GDPR. For any question regarding this policy, you can reach us at info@mauricenora.be or at the postal address above.
2. What data do we process?
Depending on your relationship with Maurice & Nora, we process identification and contact data, profile data, financial data, data related to your assistance requests or platform use, communication and contract history, technical data (such as IP address and device type), and behavioural data for product analytics (see section 4). Where legally required, we also process your national register number.
3. Why do we process your data?
We process your data to deliver our services correctly (registration, customer management, matching, scheduling, communication, payouts, invoicing), to comply with our legal obligations, for product analytics and quality monitoring (see section 4), and — subject to your explicit consent — for marketing communications. The legal basis depends on the purpose: performance of a contract (article 6.1.b GDPR), legal obligation (6.1.c), consent (6.1.a), or legitimate interest (6.1.f).
4. Product analytics and cookies
We measure how our platforms are used in order to improve them. We work with two levels, and you decide whether you want the extended measurement.
4.1 Two levels of measurement
Level 1 — Anonymised measurement. We measure page views, clicks, and navigation within a single visit. Your IP address is truncated immediately and there is no link to your account. Nothing is stored on your device and no consent is required (legitimate interest).
Level 2 — Product analytics. Same as level 1, but linked to your user account via a pseudonymous identifier so we can analyse usage patterns across sessions.
4.2 Cookies and local storage
In addition to strictly necessary cookies (login session, cookie choice, security tokens), we set — only after your consent — analytics cookies (max. 12 months) and marketing cookies.
4.3 Managing your consent
You can set or withdraw your consent for product analytics and marketing at any time via the cookie banner, the "Manage cookie preferences" link in the footer of every page, or the privacy settings in our portals and apps. Data already collected is retained for the periods listed in section 5.
5. How long do we keep your data?
- Active users: as long as needed for service delivery.
- Inactive accounts: maximum 5 years after last activity.
- Payment data: maximum 10 years (accounting law).
- Correspondence: maximum 2 years.
- Analytics data: maximum 12 months.
- Session recordings: maximum 30 days.
- Consent log: lifetime of your account + 5 years (evidentiary).
6. Who do we share your data with?
We share your data only when necessary, and always under a data processing agreement or a legal basis. Our recipient categories: processors for hosting and database, email delivery, payments, telephony, AI voice services, product analytics, content management, CDN and security, and email synchronisation; our accountant and insurers; and government authorities where legally required. We also share limited profile data with other users after a confirmed match. Your data is never sold or shared with third parties for commercial purposes without your consent.
7. Transfers outside the EEA
For most processing activities, your data stays within the European Economic Area. Where a processor processes data outside the EEA (typically in the United States), this happens under the EU-US Data Privacy Framework or under standard contractual clauses approved by the European Commission.
8. Your rights
Under the GDPR, you have the rights of access, rectification, erasure, restriction, objection, and data portability. For processing based on consent, you may withdraw your consent at any time — for product analytics via the cookie preferences or the privacy settings (see section 4.3). You also have the right to lodge a complaint with the competent supervisory authority. Contact us at info@mauricenora.be.