Legal

Privacy & Data Protection

MyRealityCheck.ai handles your data the way you handle a crisis plan — with precision, discretion, and clear accountability. This page explains exactly what we collect, why, and how we protect it.

Last updated: March 2026

01

Who We Are

Controller:  Tom De Wilde (eenmanszaak)

VAT / BTW:  BE 0846.629.064

Operating as:  MyRealityCheck.ai

Address:  Belgium

Email:  tom@myrealitycheck.ai

Website:  myrealitycheck.ai

MyRealityCheck.ai is registered in Belgium and operates in full alignment with the General Data Protection Regulation (GDPR — EU 2016/679).

02

What We Collect and Why

DataWhy we collect itLegal basis
Organization name and typeTo personalize your Crisis Readiness ReportLegitimate interest / Contract
Contact name and emailTo deliver your reportContract performance
Assessment responses (56 questions)To generate your Crisis Readiness Score and ReportContract performance
Open question responsesTo provide context-specific recommendationsContract performance
Usage data (page visits, scan completion)To improve the platformLegitimate interest

What the CRS does NOT collect

  • Names of individual staff members or key personnel
  • Technical system specifications or infrastructure details
  • Classified or operationally sensitive documents
  • Financial data or legal records

The CRS measures organizational maturity — not operational secrets. Think of it as a fire safety audit that asks "do you have an evacuation plan?" — not "send us your evacuation plan."

03

How We Use Your Data

Your assessment data is used exclusively to:

  1. 1.Generate your personalized Crisis Readiness Report
  2. 2.Send you your confirmation and follow-up communications

Your data is never:

  • Sold or shared with third parties
  • Used for advertising or marketing without your consent
  • Shared with other clients or organizations

Your data serves one purpose: making your organization more resilient.

04

How Long We Keep Your Data

Assessment responses3 years from submission date
Contact information3 years from last interaction
Report documents5 years (for quality assurance and potential re-assessment benchmarking)

After these periods, all data is permanently deleted. You can request earlier deletion at any time — see Section 6.

05

Where Your Data Is Stored

All MyRealityCheck.ai data is stored and processed within the European Union (EU).

We use the following EU-compliant services:

  • Supabase (database & authentication) — EU-hosted, SOC 2 Type II certified
  • Resend (email delivery) — EU data processing
  • Netlify (website hosting) — EU/US with Standard Contractual Clauses

All sub-processors are bound by Data Processing Agreements (DPAs) and are contractually required to handle your data in compliance with GDPR.

06

Your Rights

Under GDPR, you have the right to:

  • AccessRequest a copy of all data we hold about you
  • RectifyCorrect any inaccurate data
  • EraseRequest deletion of your data ("right to be forgotten")
  • RestrictLimit how we process your data
  • ObjectObject to processing based on legitimate interest
  • PortabilityReceive your data in a structured, machine-readable format

To exercise any of these rights, contact: tom@myrealitycheck.ai

We will respond within 30 days. No fee. No bureaucracy.

07

Cookies

The MyRealityCheck.ai website uses minimal cookies:

Essential cookies only

  • Session management (required for the CRS to function)
  • No tracking cookies
  • No advertising cookies
  • No third-party analytics cookies

You can disable cookies in your browser settings. Note: disabling essential cookies may affect CRS functionality.

08

Data Breach Notification

In the unlikely event of a data breach affecting your personal data, MyRealityCheck.ai will:

  1. 1.Notify the Belgian Data Protection Authority within 72 hours of becoming aware of the breach, as required by GDPR Article 33
  2. 2.Notify affected individuals without undue delay if the breach poses a high risk to their rights and freedoms
  3. 3.Document the breach, its effects, and all remedial actions taken
09

Contact & Complaints

Questions about this policy or how we handle your data?

Email: tom@myrealitycheck.ai

Response time: within 5 business days

If you believe your data rights have been violated, you have the right to lodge a complaint with the Belgian Data Protection Authority (Gegevensbeschermingsautoriteit):

Website: www.gegevensbeschermingsautoriteit.be

Email: contact@apd-gba.be

Phone: +32 (0)2 274 48 00

10

Updates to This Policy

This policy was last updated: February 2026.

If we make material changes, we will notify active clients by email. The current version is always available at myrealitycheck.ai/privacy.

← Back to MyRealityCheck.ai
Terms of UseContact