GDPR
Mavor version 06-09-2025
Contact details
Data protection contact
Mavor
Website: Mavor
Adres: Van der Mondeweg 36-B 6685 BP Haalderen
E-mail: [email protected]
Mr. Stalpers or Mr. Van Groezen We can be reached via [email protected]
Personal data we process
We process your personal data because you use our services and/or because you provide this data to us. Below is an overview of the personal data we process:
- First and last name
- Company name and Chamber of Commerce number
- Address details
- Phone number
- Email address
- IP address
- Data about your activities on our website (cookies)
- Order details such as the products ordered
- Internet browser and device type
- Bank account number
Special and/or sensitive personal data we process
Our website and/or service does not intend to collect data about website visitors who are younger than 16 years old, unless they have permission from parents or guardians. However, we cannot check whether a visitor is older than 16. We therefore recommend that parents be involved in the online activities of their children, in order to prevent data about children being collected without parental consent. If you are convinced that we have collected personal data about a minor without this permission, please contact us via [email protected]. We will then delete this information.
Purpose and legal basis for processing personal data
We process your personal data for the following purposes:
- Processing your payment
- Being able to call or email you if necessary to provide our services
- Informing you about changes to our services and products
- Providing you with the opportunity to create an account
- To deliver goods and services to you
- We analyze your behavior on the website to improve the website and tailor the range of products and services to your preferences.
- We also process personal data when we are legally required to do so, such as data we need for our tax return.
- For sales where VAT is transferred to another entrepreneur, we also report the VAT number on the ICP declaration to the tax authorities.
Automated decision-making
A large part of our business is automated, which is necessary for processing orders and payments. Automated decision-making is also essential, for example, for retrieving and sending emails. Below is a list of the software and hardware we currently use that can interact with each other and access personal data. We never share personal data with software and hardware that could have significantly negative consequences for the user.
- Acumulus (accounting)
- Windows, Mac OS, iOS, Android and Linux
- Cloud86 (webhosting)
- Versio, Vimexx or Strato (Backup web hosting in case Cloud86 is not available)
- WordPress with various plugins, including WooCommerce, MailPoet, Matomo, Mollie, PostNL Business, Shops United, Forminator, Elementor, accounting integrations, Platy sync, Bol.com connect, and more.
- Mollie (Processing payments)
- Bunq (Processing payments)
- Nextcloud + Deck (Processing of files)
- Gmail for copies of email traffic (other email activities)
- AI solutions such as ChatGPT.
- Intranet for processing orders and inventory.
- If you have placed an order on platforms such as Bol.com or Etsy, these orders are automatically synchronized with our webshop and accounting along with personal data. With many platforms, you are purchasing from the partner and not directly from us.
- Zoho Desk (ticketsystem)
- HP printer (automated printing)
How long we retain personal data
We do not retain your personal data longer than strictly necessary to achieve the purposes for which your data is collected. We apply the following retention periods for the following categories of personal data:
- First and last name: 7-15 years for our basic administration and accounting.
- Company name and Chamber of Commerce number: 7-15 years for our basic administration and accounting.
- Address details: 7-15 years for our basic administration and accounting.
- Phone number: 7-15 years for correspondence.
- Email address: 7-15 years for correspondence.
- IP address: 26 months for website tracking (Google Analytics).
- Data about your activities on our website: 26 months for website tracking (Google Analytics).
- Internet browser and device type: 26 months for website tracking (Google Analytics).
- Bank account number: 7 years for our basic administration and accounting.
- Other data you have provided: 7-15 years for our basic administration and accounting.
Sharing personal data with third parties
We do not sell your data to third parties and only provide it to third parties when necessary for the execution of our agreement with you or to comply with a legal obligation. We enter into a data processing agreement with companies that process your data on our behalf to ensure the same level of security and confidentiality of your data. We remain responsible for these processing activities.
Cookies and similar techniques we use
We only use technical and functional cookies, as well as analytical cookies that do not infringe on your privacy. A cookie is a small text file that is stored on your computer, tablet, or smartphone upon your first visit to our website. The cookies we use are necessary for the technical operation of the website and your user convenience. They ensure that the website functions properly and remember your preferences. We can also use them to optimize our website. You can opt out of cookies by configuring your internet browser to stop storing cookies. Additionally, you can delete all previously stored information through your browser’s settings.
Access, correction, deletion, and portability of personal data
You have the right to view, correct or delete your personal data. In addition, you have the right to withdraw your consent for data processing, to object to the processing of your personal data and the right to data portability. This means that you can submit a request to us to send the personal data that we have about you in a computer file to you or another organization named by you. You can submit a request for access, correction, deletion, data transfer, withdrawal of consent or objection by contacting us via [email protected]. To ensure that the request has been made by you, we ask you to send a copy of your ID. In this copy, black out your passport photo, MRZ (machine readable zone, the strip with numbers at the bottom of the passport), passport number and Citizen Service Number (BSN) to protect your privacy. We will respond to your request as soon as possible, but no later than within four weeks. We would also like to point out that you have the option to file a complaint with the national supervisory authority, the Dutch Data Protection Authority.
Security of personal data
We take the protection of your data seriously and implement appropriate measures to prevent misuse, loss, unauthorized access, unwanted disclosure, and unlawful alteration. We use security software, such as antivirus programs and firewalls, to secure your data. We transmit your data via a secure internet connection (TLS/SSL), identifiable by the address bar showing ‘https’ and a padlock icon. We also use security standards like DKIM, SPF, and DMARC to prevent you from receiving emails that contain viruses, spam, or are intended to obtain personal data. Additionally, we employ DNSSEC as an extra layer of security to prevent you from being redirected to a fraudulent IP address.
We also follow secure password management practices, ensuring that each login has a uniquely generated password. Whenever possible, we implement additional security measures such as two-factor authentication.
If you believe that your data is not properly secured or if there are indications of misuse, please contact our customer service or send an email to [email protected].
Measures taken
In addition, we have taken several measures to protect your personal data:
- Security software, such as antivirus programs and firewalls
- Secure internet connection via TLS/SSL
- Use of DKIM, SPF, and DMARC for email security
- Use of DNSSEC for extra security of domain names
- Secure password management practices with unique and strong passwords
- Ability for two-factor authentication
If you have any questions about our privacy statement or the security of your personal data, you can contact us via [email protected].