Privacy Policy

1. Data Controller

MOZAIC Core is operated by MK TechLAB. For data protection enquiries, please contact us at mktechlab.uk@gmail.com.

2. What Data We Collect

When you submit a demo access request, we collect:

• Your name and email address
• Your agency or firm name
• Team size and main interest (optional)

This information is used solely to evaluate and process your access request.

3. Lawful Basis

Processing is based on your consent (submitting the form) and our legitimate interest in operating an invite-only platform. You may withdraw consent at any time by contacting us at the address above.

4. Data Retention

Access request data is retained for a maximum of 12 months. If your request is approved and you become a platform user, your data is retained for the duration of your organisation's account and deleted within 30 days of account closure.

5. Multi-Tenant Data Isolation

MOZAIC Core is a multi-tenant platform. Each organisation's data — including agents, buyers, leads, properties, and documents — is completely isolated from all other tenants at the application layer. Private documents are accessed via signed, time-limited URLs.

6. EU Hosting & GDPR

MOZAIC Core infrastructure is hosted on Supabase and Vercel, with data processed in the EU. We follow GDPR data minimisation principles throughout the platform. Tenant organisations using MOZAIC Core are responsible for ensuring their own use of the platform complies with applicable data protection law.

7. Your Rights

Under GDPR, you have the right to access, correct, or request deletion of your personal data. To exercise these rights, contact us at mktechlab.uk@gmail.com. We will respond within 30 days.

8. Changes to This Policy

We may update this policy from time to time. The “Last updated” date at the top of this page will reflect any changes. Continued use of the platform after changes constitutes acceptance of the updated policy.