Boomerang Claims
Boomerang Claims
  • Home
  • About Us
  • Fees
  • Claims Process
  • Contact

Privacy Policy

Last Updated: 14 May 2025

Boomerang Claims Limited ("we", "our", "us") is committed to protecting and respecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your personal data when you visit our website boomerangclaims.co.uk (the “Website”) and when you engage with us in the course of our business operations.

We are registered with the UK Information Commissioner's Office (ICO) as a data controller. 


1. Who We Are

Controller:
Boomerang Claims Limited
1 Charterhouse Mews, London, EC1M 6BB
09839363
info@boomerangclaims.co.uk

2. What Information We Collect

We may collect and process the following types of personal data:

a) Information you provide to us directly:

  • Full name
  • Email address
  • Telephone number
  • Postal address
  • Job title and company name
  • Any personal data included in client communications or documents you share with us

b) Automatically collected information:

  • IP address
  • Browser type and version
  • Operating system
  • Referrer URL
  • Pages visited and duration
  • Cookies and similar technologies (see Cookie Policy)

c) Confidential client data:
If you are a client, we may process additional information provided by or on behalf of you in connection with the services we provide. This may include confidential or sensitive personal data, which will be handled with enhanced security and confidentiality protections.


3. How We Use Your Information

We process your personal data for the following purposes:

  • To provide you with information or services you request
  • To communicate with you about your enquiry or contract
  • To manage and perform our contractual obligations
  • To comply with our legal obligations
  • To maintain security and prevent fraud
  • For internal administrative and business purposes
  • To improve our website and user experience

We will not use your data for marketing purposes without your explicit consent.


4. Legal Basis for Processing

We rely on the following lawful bases under the UK GDPR:

  • Consent – where you have given clear consent to process your data
  • Contractual necessity – where processing is necessary to perform a contract with you
  • Legal obligation – where we are legally required to process your data
  • Legitimate interests – where processing is necessary for our legitimate business interests and does not override your rights


5. Sharing Your Data

We do not sell your personal data. We may share your information with:

  • Service providers (e.g. IT providers, cloud hosting, email services)
  • Legal, regulatory, or law enforcement authorities if required
  • Professional advisers (e.g. accountants, lawyers) under strict confidentiality
  • Subcontractors, only where necessary to perform our services and bound by data protection agreements

All third-party service providers are required to take appropriate security measures and are not allowed to use your personal data for their own purposes.


6. Data Retention

We will retain your personal data only for as long as necessary to fulfil the purposes we collected it for, including satisfying any legal, accounting, or reporting requirements.

Typically:

  • Enquiry data: retained for 12 months
  • Client data: retained for 6–7 years after conclusion of services
  • Website visitor logs: retained for up to 12 months


7. International Data Transfers

We do not routinely transfer personal data outside the UK. Where we use third-party processors located outside the UK, we ensure appropriate safeguards are in place, such as UK-approved Standard Contractual Clauses or adequacy decisions.


8. Data Security

We have implemented appropriate technical and organisational measures to protect your personal data, including:

  • Encrypted data storage
  • Secure file sharing tools
  • Access controls and authentication
  • Staff training and confidentiality agreements
  • Regular security assessments

In the event of a suspected data breach, we will notify you and the ICO where legally required.


9. Your Rights

Under the UK GDPR, you have the following rights:

  • Right to be informed – about how we use your data
  • Right of access – to your personal data
  • Right to rectification – if your data is inaccurate or incomplete
  • Right to erasure – in certain circumstances
  • Right to restrict processing – in limited circumstances
  • Right to data portability – if applicable
  • Right to object – to processing based on legitimate interests
  • Rights related to automated decision making – we do not use automated profiling

To exercise your rights, please contact us at info@boomerangclaims.co.uk.


10. Cookies

We use cookies and similar technologies on our website. Please refer to our [Cookie Policy] for more details.


11. Third-Party Links

Our Website may contain links to third-party sites. We are not responsible for the privacy practices or content of such sites. Please review their policies before submitting personal data.


12. Complaints

If you are unhappy with how we have handled your data, you can contact us directly to resolve your concern. You also have the right to lodge a complaint with the Information Commissioner’s Office (ICO):

Website: www.ico.org.uk
Phone: 0303 123 1113


13. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in legal or regulatory requirements or our practices. Any changes will be posted on this page, and where appropriate, notified to you by email.


14. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact:

Email: info@boomerangclaims.co.uk 

Copyright © 2025 Boomerang Claims - All Rights Reserved.

  • About Us
  • Fees
  • Claims Process
  • Contact
  • Privacy Policy

Powered by