We at BOON ONLINE LIMITED (trading name BOON) take your privacy very seriously. Here, you can
out about how we keep your data private, and what cookies we collect to
personalise your experience on this website. We are
committed to avoiding the unnecessary request or collection of information about you, and as
do not ask you to create an account with us. Our services are designed to avoid the necessity of
collecting personal identifiable information.
BOON ONLINE LIMITED is a company registered in England and Wales under registration number 11085342 at address:
Office 7 35-37 Ludgate Hill,
Please read these policies carefully and check them periodically as they may change. We will notify subscribers to our mailing list when this occurs, and will place a pop-up on our homepage for a limited period of 10 days. It is important that the data that we store is kept up-to-date, and as such we ask you to maintain the accuracy of your data, processed by us. If any of the relevant information changes, it is your responsibility to notify us.
We (BOON) are dedicated to being transparent about how we collect, store, and process data. This
document sets out our commitment to data protection, individual rights and obligations in
We have appointed Dylan John Grey, CEO as our data protection officer. He can be
In this document and the supporting documents, we present what data we collect and what we do with it, where and how it is collected, stored and processed, and why we collect it.
Our websites and services are not intended for children, and we we do not knowingly collect any minor's data.
The data we collect about you depends on the services you use and our relationship with you.
Along with this document, please read the supporting document(s) which are relevant to you. The
documents should be read as one with content under the same headings combined into one section.
Our Landing Pages relates to if you are a visitor to one of our websites; yourboon.co and boonspotlight.com.
BOON Spotlight relates to online users of our Spotlight technology (sets of questions to understand you and help you find great products). This may be on our demo website(s), or on one of our customer's websites.
We may collect and process any of the personal data listed below:
We also collect, use and share Aggregated Data such as statistical or demographic data for any
purpose. Aggregated Data may be derived from your personal data but is not considered personal
in law as this data does not directly or indirectly reveal your identity. For example, we may
aggregate your Usage Data to calculate the percentage of users accessing a specific website
Many of the services offered by our website improve based on each user's experience and feedback
(both inferred and explicitely provided). However, all data collected in order for these
improve is anonymous and thus does not constitute personal data by law.
We do not collect Special Categories of Personal Data about you (this includes details about your race or ethnicity, religious or philosophical beliefs, sex life, sexual orientation, political opinions, trade union membership, information about your health and genetic and biometric data). Nor do we collect any information about criminal convictions and offences.
Your data may be acquired with any of these methods:
We will only use your personal data when the law allows us to. Most commonly, we will use your personal data in the following circumstances:
Generally we do not rely on consent as a legal basis for processing your personal data other than in relation to maintenance and in relation to sending third-party direct marketing communications to you via e-mail, where consent is given by you submitting your details. You have the right to withdraw consent to these communications at any time by clicking the link in the communication, or contacting us at [email protected].
Below is a list of how we use your personal data, as well as the lawful basis on which we rely to process it.
We will only use your personal data for the purposes outlined above (or in relevant supporting documents), or a related purpose. For an explanation of how a new purpose is related to the original, contact us at [email protected]. In an instance where your data is needed for an unrelated purpose to that outlined above, we will notify you and explain our legal basis for doing so. In accordance with the rules set out above, your data may be processed when required or permitted by law without your consent or knowledge.
In accordance with the rules set out in this document, we may disclose your data to any third parties which fit a profile below. Any of these companies and services may act inside or outside the EU, and will be required to respect the security of your personal data, and treat it in accordance with the law. These third parties are only allowed to use your data for our purposes in accordance with our instructions, not for their own purposes.
Some of our External Third Parties are based outside the European Economic Area (EEA) so their
processing of your personal data will involve a transfer of data outside the EEA.
Whenever we transfer your personal data out of the EEA, we ensure a similar degree of protection is afforded to it by ensuring at least one of the following safeguards is implemented:
Please contact us at [email protected] if you want further information on the specific mechanism used by us when transferring your personal data out of the EEA.
We have put in place appropriate security measures to prevent your personal data from being
accidentally lost, used or accessed in an unauthorised way, altered or disclosed. In addition,
limit access to your personal data to those employees, agents, contractors and other third
who have a business need to know. They will only process your personal data on our instructions
they are subject to a duty of confidentiality.
We have put in place procedures to deal with any suspected personal data breach and will notify you and any applicable regulator of a breach where we are legally required to do so.
You acknowledge that the Internet is not a completely secure medium for communication and, accordingly, we cannot guarantee the security of any information you send to us (or we send to you) via the Internet. We are not responsible for any damages which you, or others, may suffer as a result of the loss of confidentiality of such information.
We will only retain your personal data for as long as necessary to fulfil the purposes we
it for, including for the purposes of satisfying any legal, accounting, or reporting
By your legal rights, there are circumstances where you can request for your personal data to be deleted. More details on this can be found below.
In some circumstances we may anonymise your personal data (so that it can no longer be associated with you) for research or statistical purposes in which case we may use this information indefinitely without further notice to you.
Below are a list of your legal rights regarding your personal data.
Please note that you may only use/benefit from some of these rights in limited circumstances. For more information, we suggest that you consult guidance from the Information Commissioner’s Office (ICO) or please contact us at [email protected].
We provide links to third-party websites, plug-ins and applications. Clicking on those links or
enabling those connections may allow third parties to collect or share data about you. We do not
control these third-party webites and are not responsible for their privacy statements or cookie
policies. Please ensure that you read the privacy notice and Terms and Conditions of every
you visit on leaving our site.
We use Google Analytics to view aggregated use data of our services. They create cookies to help perform this tracking.
We use Mailchimp and SendGrid to handle our
Last updated: 06/02/2020