booooomerang may collect and process the following types of personal data. This includes contact details such as name, email address, company name, and any information provided during communication. It also includes billing information such as payment details, invoices, and transaction data. In addition, booooomerang may process project-related data, including files, images, marketing materials, and any content provided by the client. Technical data such as IP address, browser type, and usage behavior may also be collected when interacting with websites or tools used by booooomerang.

Personal data is collected when a client contacts booooomerang, purchases a service, submits information during onboarding, communicates via email or other channels, or uses any website or platform connected to booooomerang.

booooomerang processes personal data for the following purposes. This includes delivering services, communicating with clients, managing projects, sending invoices, processing payments, improving services, and complying with legal obligations. Data may also be used for internal analysis, service optimization, and portfolio or marketing purposes, where applicable.

The legal basis for processing personal data includes the performance of a contract, compliance with legal obligations, legitimate business interests, and consent where required.

booooomerang only processes personal data that is necessary for the execution of its services. Data is not sold or shared with third parties for marketing purposes.

Personal data may be shared with third-party service providers where necessary to deliver services. This includes tools for payment processing, email communication, file storage, design software, analytics, and AI tools. These parties only receive the data required to perform their function and are expected to handle data in compliance with applicable laws.

booooomerang may use third-party tools, including AI-based services, to process or enhance client content. By using the services, the client acknowledges and accepts that data provided may be processed through such tools.

Personal data is stored only as long as necessary to fulfill the purposes for which it was collected, including legal, accounting, or reporting requirements. After this period, data may be deleted or anonymized.

booooomerang takes appropriate technical and organizational measures to protect personal data against loss, misuse, unauthorized access, disclosure, or alteration. However, no system is completely secure, and absolute security cannot be guaranteed.

Clients have the right to access their personal data, request correction, request deletion, restrict processing, object to processing, and request data portability. Requests can be made by contacting support@booooomerang.com. booooomerang may request verification of identity before processing such requests.

If personal data is processed based on consent, the client has the right to withdraw that consent at any time. Withdrawal does not affect the lawfulness of processing before withdrawal.

Clients also have the right to file a complaint with a supervisory authority if they believe their data is not handled correctly.

booooomerang does not knowingly collect data from individuals under the age of 16. If such data is identified, it will be deleted.

booooomerang may update this Privacy Policy at any time. The latest version will always apply and will be made available upon request or via the website if applicable.

This Privacy Policy is governed by Dutch law.