Privacy for marketplace providers

Everseed Ventures is the controller of your personal data as a provider. Contact our DPO at team@maternity.app.

• Application data. Business name, contact person, role, email, phone, website, social handles, references.
• Verification data. Business registration number, principals’ identification documents, proof of address, professional credentials, insurance certificates, criminal-record check where required.
• Onboarding and payout. Bank account or equivalent, tax identification, beneficial-owner declaration for AML where applicable.
• Listing content. Descriptions, photographs, pricing, schedule.
• Operational data. Bookings, messages with members, complaints, ratings, dispute history, response times.
• Account and usage. Login activity, device, browser, IP, in-app actions, support tickets.

• To run the marketplace relationship with you. Legal basis: performance of our contract with you.
• To verify your identity and credentials. Legal basis: legal obligation; our legitimate interest in keeping the marketplace safe; for sensitive data, your explicit consent.
• To process payouts and account for them. Legal basis: performance of contract; legal obligation (tax/AML).
• To prevent fraud, money-laundering, and abuse. Legal basis: legitimate interest, legal obligation.
• To improve the marketplace and feature your listings. Legal basis: legitimate interest.
• To respond to legal claims and protect our rights. Legal basis: legitimate interest, legal obligation.

• Service providers (data processors). Hosting, payouts (Stripe and Stripe Connect), email, identity-verification vendor, customer support, error monitoring.
• Members who view your listing or transact with you, limited to your public listing and the contact details required for fulfilment.
• Authorities and courts where required by law (tax filings, AML reporting, court orders).
• Acquirer in a corporate transaction.
• Professional advisers (auditors, lawyers, insurers) under duty of confidentiality.

We do not sell your data to third parties.

We are an independent controller for your personal data as a provider account-holder.

When a member books or messages you through the platform, we and you act as independent controllers for the member’s personal data — we facilitate the introduction; you decide how to deliver your service. A short summary of how the controller responsibilities are allocated is in the Provider Terms.

If we ever ask you to process member data on our behalf (rather than your own), we will sign a Data Processing Addendum first.

The information shown on your public listing — your business name, descriptions, photos, public reviews, response times — is intentionally public. Once a member sees that data they may retain it on their own device or through search engines. Removing your listing removes it from our platform but cannot remove third-party copies.

Some of our processors operate outside the EEA. We use the European Commission’s Standard Contractual Clauses and supplementary safeguards as needed.

• Active provider account. While the account is active, plus reasonable wind-down (typically 30 days after termination, longer for outstanding bookings).
• Verification, KYC, AML records. At least five years after termination, as required by AML law.
• Financial and tax records. At least 7 years.
• Disputes and complaints. Until resolution, then for the limitation period of any potential claim.

You have the same GDPR rights as members — access, correction, erasure (subject to our obligation to keep AML and tax records), restriction, portability, objection, withdrawal of consent, and complaint to the data-protection authority. To exercise any right, write to team@maternity.app.

Provider accounts are protected by mandatory two-factor authentication, encryption in transit and at rest, row-level-security in our database, restricted-access tooling for staff, and audit logging. Verification documents are stored separately under stricter access controls.

Where applicable, our payout partner runs identity, business, and beneficial-owner verification (KYC/KYB) on you and the principals of your business. The legal basis is our and our payout partner’s obligation under anti-money-laundering law. Failing KYC/KYB checks blocks payouts and can lead to account closure.

We may update this policy. We will notify provider accounts of material changes at least 30 days before they take effect.

Provider operations: team@maternity.app. Privacy: team@maternity.app. Postal: Everseed Ventures, Calgary, AB, Canada.