Legal · GDPR

Privacy Policy.

Last updated · May 2026
01

Who we are

Mappliance is an AI-powered EU regulatory mapping tool operated by Mappliance SRL/BV (in formation), registered in Belgium. Our registered address and contact details will be published upon formal incorporation. For any privacy-related queries, please contact us at contact@mappliance.org.

02

What data we collect

We collect the following categories of personal data: (a) Account data: your email address and password when you create an account. (b) Usage data: the company profile information you enter when using the tool, including country, sector, turnover, employee numbers, and supply chain information. (c) Technical data: IP address, browser type, device information, and usage logs collected automatically when you use our service.

03

How we use your data

We use your data to: provide and improve the Mappliance service; generate regulatory exposure analyses based on your company profile; maintain and secure your account; send you service-related communications; comply with our legal obligations. We do not sell your personal data to third parties. We do not use your data for advertising purposes.

04

Legal basis for processing

We process your personal data on the following legal bases under the General Data Protection Regulation (GDPR): Performance of contract — to provide the services you have requested. Legitimate interests — to improve our service and ensure its security. Legal obligation — to comply with applicable laws and regulations. Consent — where you have given us specific consent to process your data for a particular purpose.

05

Data sharing

We share your data with the following categories of third parties: Anthropic (AI processing — your company profile inputs are processed by Anthropic Claude AI to generate regulatory analyses); Supabase (database and authentication services); Vercel (hosting and infrastructure). All third-party processors are subject to data processing agreements and appropriate safeguards.

06

Data retention

We retain your account data for as long as your account is active. If you delete your account, we will delete your personal data within 30 days, except where we are required to retain it for legal or regulatory purposes. Usage logs are retained for a maximum of 12 months.

07

Your rights

Under GDPR, you have the right to: access your personal data; correct inaccurate data; request deletion of your data; object to or restrict processing; data portability; withdraw consent at any time. To exercise these rights, please contact us at contact@mappliance.org. You also have the right to lodge a complaint with your national data protection authority.

08

Cookies

We use essential cookies only — those necessary for the service to function. We do not use advertising or tracking cookies. You can control cookie settings through your browser.

09

Security

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. These include encryption in transit and at rest, access controls, and regular security reviews.

10

Changes to this policy

We may update this privacy policy from time to time. We will notify you of significant changes by email or by displaying a notice on our website. The date of the most recent revision is shown at the top of this page.