We at BOON ONLINE LIMITED (trading name BOON) take your privacy very seriously. Here, you can find
out about how we keep your data private, and what cookies we collect to personalise your experience on this website. We are
committed to avoiding the unnecessary request or collection of information about you, and as such we
do not ask you to create an account with us. Our services are designed to avoid the necessity of
collecting personal identifiable information.
BOON ONLINE LIMITED is a company registered in England and Wales under registration number 11085342 at address:
Office 7 35-37 Ludgate Hill,
Please read these policies carefully and check them periodically as they may change. We will notify subscribers to our mailing list when this occurs, and will place a pop-up on our homepage for a limited period of 10 days. It is important that the data that we store is kept up-to-date, and as such we ask you to maintain the accuracy of your data, processed by us. If any of the relevant information changes, it is your responsibility to notify us.
We (BOON) are dedicated to being transparent about how we collect, store, and process data. This
document sets out our commitment to data protection, individual rights and obligations in regards to
We have appointed Dylan John Grey, CEO as our data protection officer. He can be contacted at
In this document, we present what data we collect and what we do with it, where and how it is collected, stored and processed, and why we collect it.
This website is not intended for children, and we we do not knowingly collect any minor's data.
We may collect and process any of the personal data listed below:
We also collect, use and share Aggregated Data such as statistical or demographic data for any
purpose. Aggregated Data may be derived from your personal data but is not considered personal data
in law as this data does not directly or indirectly reveal your identity. For example, we may
aggregate your Usage Data to calculate the percentage of users accessing a specific website feature.
Many of the services offered by our website improve based on each user's experience and feedback
(both inferred and explicitely provided). However, all data collected in order for these services to
improve is anonymous and thus does not constitute personal data by law.
We do not collect any Special Categories of Personal Data about you (this includes details about your race or ethnicity, religious or philosophical beliefs, sex life, sexual orientation, political opinions, trade union membership, information about your health and genetic and biometric data). Nor do we collect any information about criminal convictions and offences.
Your data may be acquired with any of these methods:
We will only use your personal data when the law allows us to. Most commonly, we will use your personal data in the following circumstances:
Generally we do not rely on consent as a legal basis for processing your personal data other than in relation to you account creation and maintencance and in relation to sending third-party direct marketing communications to you via e-mail, where consent is given by you submitting your details. You have the right to withdraw consent to these communications at any time by clicking the link in the communication, or contacting us at email@example.com.
Below is a list of how we use your personal data, as well as the lawful basis on which we rely to process it.
Email communications and marketing are basic communications for our users who are interested in the
company's actions. These communications may include, but may not be limited to, requests for
feedback, news, and notifications about updates to our policies. We will get your express opt-in
consent before sharing any of your personal data with external companies for marketing purposes. You
may opt out of communications at any time by unsubscribing on an e-mail, or contacting firstname.lastname@example.org.
We will only use your personal data for the purposes outlined above, or a related purpose. For an explanation of how a new purpose is related to the original, contact us at email@example.com. In an instance where your data is needed for an unrelated purpose to that outlined above, we will notify you and explain our legal basis for doing so. In accordance with the rules set out above, your data may be processed when required or permitted by law without your consent or knowledge.
In accordance with the rules set out in this document, we may disclose your data to any third parties which fit a profile below. Any of these companies and services may act inside or outside the EU, and will be required to respect the security of your personal data, and treat it in accordance with the law. These third parties are only allowed to use your data for our purposes in accordance with our instructions, not for their own purposes.
Some of our External Third Parties are based outside the European Economic Area (EEA) so their
processing of your personal data will involve a transfer of data outside the EEA.
Whenever we transfer your personal data out of the EEA, we ensure a similar degree of protection is afforded to it by ensuring at least one of the following safeguards is implemented:
Please contact us at firstname.lastname@example.org if you want further information on the specific mechanism used by us when transferring your personal data out of the EEA.
We have put in place appropriate security measures to prevent your personal data from being
accidentally lost, used or accessed in an unauthorised way, altered or disclosed. In addition, we
limit access to your personal data to those employees, agents, contractors and other third parties
who have a business need to know. They will only process your personal data on our instructions and
they are subject to a duty of confidentiality.
We have put in place procedures to deal with any suspected personal data breach and will notify you and any applicable regulator of a breach where we are legally required to do so.
You acknowledge that the Internet is not a completely secure medium for communication and, accordingly, we cannot guarantee the security of any information you send to us (or we send to you) via the Internet. We are not responsible for any damages which you, or others, may suffer as a result of the loss of confidentiality of such information.
We will only retain your personal data for as long as necessary to fulfil the purposes we collected
it for, including for the purposes of satisfying any legal, accounting, or reporting requirements.
By your legal rights, there are circumstances where you can request for your personal data to be deleted. More details on this can be found below.
In some circumstances we may anonymise your personal data (so that it can no longer be associated with you) for research or statistical purposes in which case we may use this information indefinitely without further notice to you.
Below are a list of your legal rights regarding your personal data.
Please note that you may only use/benefit from some of these rights in limited circumstances. For more information, we suggest that you consult guidance from the Information Commissioner’s Office (ICO) or please contact us at email@example.com.
We provide links to third-party websites, plug-ins and applications. Clicking on those links or
enabling those connections may allow third parties to collect or share data about you. We do not
control these third-party webites and are not responsible for their privacy statements or cookie
policies. Please ensure that you read the privacy notice and Terms and Conditions of every website
you visit on leaving our site.
We use services allowing you to share our website and services on social media platforms. These websites and services (e.g. Facebook, Instagram, Pinterest, Whatsapp) may create cookies to aid in their services.
We use Google Analytics and Yandex Metrica to view aggregated use data of the website. These services create cookies to help perform this tracking. Yandex Metrica also stores information about the way in which you use our website. This includes but is not limited to; cursor position and click tracking, dwell times, information about your computer, your IP adress and locale.
We use Mailchimp and SendGrid to handle our e-mail marketing. Mailchimp and SendGrid may also serve cookies to enable this service.
We use Stripe to complete Financial transations. They tell us that you have paid and, when relevant and/or necessary they will provide us with your Contact data and Transaction data. We also might engage third party contractors to provide us with technical or delivery services that are related to your account with us.
Last updated: 07/06/2019