Privacy Policy

Merode ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our AI-powered property management platform. We are fully compliant with the General Data Protection Regulation (GDPR) and Belgian privacy laws. As a BIV/IPI certified partner, we adhere to the highest standards of data protection in the property management industry.

We collect information you provide directly to us, including: • Account Information: Name, email address, phone number, company name, and billing information when you create an account. • Property Data: Building information, unit details, and co-owner data that you upload to our platform. • Communication Data: Emails and messages processed through our platform to provide automation services. • Usage Data: Information about how you interact with our platform, including features used and time spent. We also automatically collect: • Device and browser information • IP address and location data • Cookies and similar tracking technologies

We use the information we collect to: • Provide, maintain, and improve our services • Process and automate property management tasks • Send transactional emails and service updates • Respond to your comments, questions, and requests • Monitor and analyze trends, usage, and activities • Detect, investigate, and prevent fraudulent transactions • Comply with legal obligations Our AI systems process your data solely to provide the automation services you request. We do not sell your personal data to third parties.

Your data is stored on secure servers located within the European Union. We implement industry-standard security measures including: • End-to-end encryption for data in transit • AES-256 encryption for data at rest • Regular security audits and penetration testing • Multi-factor authentication • Role-based access controls • Automated backup systems We retain your data for as long as your account is active or as needed to provide you services. Upon account termination, we retain data for 30 days before secure deletion.

We may share your information in the following situations: • Service Providers: With third-party vendors who perform services on our behalf (hosting, payment processing, email delivery). • Legal Requirements: If required by law, court order, or governmental request. • Business Transfers: In connection with any merger, sale of assets, or acquisition. • With Your Consent: When you explicitly authorize us to share your information. All third-party service providers are contractually obligated to protect your data and use it only for the purposes we specify.

As a data subject under GDPR, you have the right to: • Access: Request a copy of the personal data we hold about you. • Rectification: Request correction of inaccurate or incomplete data. • Erasure: Request deletion of your personal data ("right to be forgotten"). • Restriction: Request limitation of processing of your data. • Portability: Receive your data in a structured, machine-readable format. • Objection: Object to processing of your data for certain purposes. • Withdraw Consent: Withdraw consent at any time where processing is based on consent. To exercise any of these rights, please contact us at privacy@merode.ai.

We use cookies and similar technologies to: • Remember your preferences and settings • Understand how you use our platform • Improve our services • Provide analytics You can control cookie preferences through your browser settings. Note that disabling cookies may affect the functionality of our platform.

All data processing occurs within the European Economic Area (EEA). In the rare event that data needs to be transferred outside the EEA, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses approved by the European Commission.

Our services are not directed to individuals under the age of 18. We do not knowingly collect personal information from children. If we learn that we have collected personal information from a child, we will take steps to delete such information.

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last Updated" date. We encourage you to review this Privacy Policy periodically.

If you have any questions about this Privacy Policy or our data practices, please contact us: SNDQ BV Email: privacy@merode.ai Address: Brussels, Belgium For data protection inquiries, you may also contact our Data Protection Officer at dpo@merode.ai. If you believe we have not addressed your concerns adequately, you have the right to lodge a complaint with the Belgian Data Protection Authority (Gegevensbeschermingsautoriteit).