Privacy Policy

This Privacy Policy (“Policy”) describes how personal information (“Personal Information”) you provide on the blue-canoe.com website (“Website”) and related products and services (“Services”) is collected, protected, and used. It also explains your choices regarding our use of Personal Information and how to access and update it. This Policy is a legally binding agreement between you (“User”, “you”, or “your”) and Nigel Frankcom t/a Blue Canoe (“Blue Canoe”, “we”, “us”, or “our”). By using the Services, you agree to this Policy.

This Policy forms part of our legal suite alongside Terms and Conditions, Cookies Policy and Acceptable Use Policy.

Data controller: Nigel Frankcom t/a Blue Canoe, Unit 159528, PO Box 6945, London W1A 6US, United Kingdom.

ICO registration: ZC010774

Automatic collection of information

Our priority is customer data security. We maintain minimal operational logs necessary to run, secure, and improve the Services (e.g., access timestamps, IP addresses for abuse prevention). We also compile statistical usage data in aggregate form that does not identify individuals.

Collection of personal information

You may use many parts of the Services without revealing your identity. Certain features may request Personal Information (e.g., name, email). We process the information you knowingly provide when creating an account, submitting content, or completing forms. Examples include:

• Personal details (name, country)
• Contact details (email, address)
• Optional geolocation (if you choose to share it)
• Materials you submit (articles, images, feedback)

We may also obtain Personal Information from public databases, social platforms, data providers, and partners (e.g., demographic or device data) for security and fraud prevention, and to operate the Services.

Use and processing of information

We process Personal Information to operate the Services and fulfil legal obligations, including to:

• Create and manage user accounts
• Improve products and services
• Send administrative information
• Respond to inquiries and support requests
• Request feedback and improve user experience
• Enforce terms and policies
• Protect against abuse and malicious activity
• Respond to legal requests and prevent harm
• Run and operate the Services

Lawful bases may include consent, contract performance, legal obligation, public interest, or legitimate interests (balanced against your rights).

Managing information

You may request deletion or correction of certain Personal Information by contacting us. We may retain records necessary to comply with legal obligations (e.g., tax and accounting) and to protect our rights. Where feasible, we will anonymise or minimise retained data.

Disclosure of information

We may share Personal Information with trusted service providers that assist us in operating the Services (e.g., hosting, email delivery, analytics, security) under agreements that restrict use to our purposes. We may also disclose information as required by law or to protect rights, safety, and prevent fraud.

Retention of information

We retain Personal Information only as long as necessary for the purposes set out in this Policy:

• Quote/message files: typically retained up to 90 days
• Account and billing records: up to 6 years (legal/accounting)
• Operational logs: for short operational periods unless needed for security or legal purposes
  After these periods, data is deleted or anonymised.

International transfers

If data is transferred outside the UK, we use appropriate safeguards (e.g., adequacy decisions, Standard Contractual Clauses).

Your rights

Depending on your location, you may have rights to access, correct, delete, restrict, or object to processing; to data portability; and to withdraw consent where applicable. You also have the right to lodge a complaint with your local Data Protection Authority.

Do Not Track

We do not track users across third-party sites for targeted advertising. Some third parties may do so when embedding their content.

Cookies

We use only strictly-necessary cookies to operate the website and your quote/session. We do not use analytics or advertising cookies, and we do not display a cookie consent banner at this time. For full details, see our dedicated Cookies Policy page. You can control cookies via your browser settings, but the site may not function correctly without essential cookies.

Email marketing

If you subscribe to newsletters, we will send you emails and provide an unsubscribe mechanism. Transactional emails (e.g., account or security alerts) may continue as necessary.

Links to other resources

We are not responsible for the privacy practices of third-party resources linked from the Services.

Information security

We use reasonable technical and organisational measures to protect Personal Information. No method of transmission or storage is completely secure; residual risk remains.

Data breach

If we become aware of a security incident that exposes Personal Information, we will take appropriate measures and, where required by law, notify affected individuals (typically within 72 hours).

Changes and amendments

We may modify this Policy by posting an updated version with a new “updated” date. Continued use after the effective date constitutes acceptance.

How to contact us

Email: data-controller@blue-canoe.net
Postal address:

Blue Canoe
Unit 159528, PO Box 6945
London W1A 6US
United Kingdom

Effective: 16 October 2025 · Version: BCv1.0.final · Governing law: England & Wales.