Privacy Notice

Bourne Apps Ltd (“we”, “us”, “our”)
Effective date: 26 February 2026

This notice explains how Bourne Apps Ltd collects and uses personal data when you visit our websites, use our software, contact us, or subscribe to updates.

1. Who we are (data controller)

Bourne Apps Ltd is the data controller for the personal data described in this notice.

Company name: Bourne Apps Ltd
Company Number: 12747963
Email (privacy enquiries): info@bourneapps.com

2. The personal data we collect

2.1 Data you provide

Contact details: name, email address, and any information you include in messages to us.
Account/subscription data (if applicable): account identifiers and subscription status.
Support data: information you provide when requesting help (e.g., device/app version, issue details).

2.2 Data collected automatically

Technical data: IP address, device type, operating system, browser/app version, language, time zone setting.
Usage data: pages/screens viewed, actions taken, diagnostics and crash logs (where enabled/available).

2.3 Payment data

If you pay for products or services, payments are processed by third-party payment providers. We typically receive limited information such as transaction IDs, subscription status, and billing country. We do not store full card details.

3. How we use your data (purposes)

To provide, operate, and improve our websites and software.
To respond to enquiries and provide customer support.
To manage subscriptions, entitlement, and access (where applicable).
To send service messages (e.g., important operational notices).
To send optional updates/marketing where you have asked to receive them (e.g., mailing list updates).
To maintain security, prevent abuse, and troubleshoot issues.
To comply with legal obligations (e.g., tax and accounting where relevant).

4. Lawful bases (UK GDPR)

We rely on one or more of the following lawful bases:

Contract: where processing is necessary to provide a product/service you request.
Legitimate interests: to run and improve our business, keep systems secure, and respond to enquiries, balanced against your rights.
Consent: where you opt in to receive marketing/updates, or where required for certain cookies/analytics.
Legal obligation: where we must comply with law (e.g., certain accounting records).

5. Marketing and email updates

If you subscribe to our mailing list, we will use your email address (and optional name) to send occasional updates. You can unsubscribe at any time using the link in each email, or by contacting us.

6. Cookies and similar technologies

Our sites may use cookies or similar technologies for essential functionality and (optionally) analytics. Where required, we will ask for your consent before setting non-essential cookies.

Essential cookies: needed for basic site functionality and security.
Analytics cookies (optional): help us understand usage and improve the site.

7. Who we share data with

We may share personal data with trusted service providers who help us operate our business, for example:

Hosting/infrastructure providers (e.g., web hosting, servers, logging).
Email delivery providers (for mailing lists and service emails).
Payment processors (to take payments and manage subscriptions).
Support tools (where used to manage support requests).
Professional advisers (legal, accounting) where necessary.

We require processors to protect your data and only process it on our instructions. We do not sell your personal data.

8. International transfers

Some of our suppliers may process data outside the UK. Where this happens, we use appropriate safeguards such as UK International Data Transfer Agreements/addendums, adequacy regulations, or other lawful mechanisms.

9. Data retention

We keep personal data only for as long as necessary for the purposes described above, including legal, accounting, or reporting requirements. Typical retention periods include:

Mailing list data: until you unsubscribe or we stop operating the list.
Support correspondence: typically up to 24 months after the last contact.
Security logs: typically 30-180 days unless needed to investigate incidents.
Financial records: retained as required by law (often several years).

10. Your rights

Under UK data protection law, you have rights including:

Access (request a copy of your personal data).
Rectification (correct inaccurate or incomplete data).
Erasure (delete data, in certain circumstances).
Restriction (limit how we use your data, in certain circumstances).
Objection (to processing based on legitimate interests, in certain circumstances).
Data portability (receive certain data in a usable format, where applicable).
Withdraw consent at any time (where we rely on consent).

To exercise your rights, contact us using the details above. We may need to verify your identity.

11. Complaints

If you have concerns, please contact us first and we will try to resolve them. You also have the right to complain to the UK Information Commissioner’s Office (ICO): ico.org.uk.

12. Security

We use appropriate technical and organisational measures to protect personal data, including access controls, encryption in transit where available, and minimisation of stored data. No system is 100% secure, but we work to reduce risk and respond promptly to incidents.

13. Children

Our products and services are not directed at children, and we do not knowingly collect personal data from children. If you believe a child has provided personal data to us, please contact us so we can take appropriate steps.

14. Changes to this notice

We may update this notice from time to time. We will post the latest version on this page and update the effective date.

15. Contact

For privacy enquiries: info@bourneapps.com