top of page

Privacy Policy Bonoos app

Last Updated: 18-11-2025

​

1. Introduction

​

This Privacy Policy explains how Basaamad Co registered in Denmark under CVR 36612266 (“we,” “our,” “us”) collects, uses, and protects your personal data when you use the Bonoos mobile application (“App”).
We comply with the EU General Data Protection Regulation (GDPR) and are committed to protecting your privacy.

By using Bonoos, you agree to this Privacy Policy.

This Privacy Policy applies to the Bonoos mobile app used by consumers. If you are a business using the Go Bonoos Business Portal, please see the separate Business Privacy Policy.

​

Consent scope: Where we rely on consent (e.g., precise location, marketing), you can withdraw it at any time in the App or device settings. Withdrawing consent does not affect processing already performed.

​

The Bonoos app is designed for general audiences and does not permit or promote any content involving sexual or adult material, alcohol, tobacco, recreational drugs, weapons, or other restricted products or services. Users and participating businesses must comply with these restrictions at all times.

---------------------------------

​

2. Data Controller

​

​Basaamad Co
Ståbyvej 22, 2740 Skovlunde
Email: gdpr_app@gobonoos.com

​

If you reside in the EEA/UK, you also have the right to lodge a complaint with your local supervisory authority (e.g., Datatilsynet in Denmark).

---------------------------------

​

3. Data We Collect

We may collect the following types of personal data:

Account Information

  • Name, email, hashed password and country. Authentication is provided via our service provider (Supabase) acting on our instructions.

  • We do not intentionally collect special categories of personal data (GDPR Art. 9). Please do not enter such data in free-text fields.

Discount Request Data

  • Product/service description, requested discount amount, date/time of request.

  • We also store the business you contacted and timestamps of interactions (sent, viewed, responded).

  • We do not process or store data related to prohibited or restricted products (e.g., alcohol, tobacco, weapons, drugs, or adult content). Any such requests will be rejected or removed in accordance with our Terms of Use.

Location Data

  • If you grant permission, we may collect approximate location (derived from IP) to show nearby businesses. If you additionally consent to precise location, we may collect GPS-based data while you use the App to improve nearby results. You can change location permissions at any time in your device settings. We do not collect background location.

Device & Technical Data

  • Device type, operating system, IP address, app version, language, time zone.

  • We also collect a push-notification token (if you enable notifications) and crash/diagnostic data to improve stability.

Usage Data

  • Interactions in the App, pages/screens visited, features used.

  • We may use analytics SDKs to understand feature usage in an aggregated/de-identified manner. You can opt out of analytics in Profile → Settings (where available).

Data Sources

  • We collect data directly from you, from your device (with your permissions), and from service providers that operate our infrastructure (e.g., hosting, analytics, notification delivery).

---------------------------------

​

4. How We Use Your Data

We process your personal data to:

  • Provide and operate the Bonoos app.

  • Process and forward your discount requests to participating businesses.

  • Respond to your inquiries and provide support.

  • Send you service notifications about your requests.

  • Send you marketing communications if you opt in.

  • Improve and optimize the App. We use aggregated or de-identified analytics where possible.

  • Comply with legal obligations.

Legal bases:

  • Contract performance (Art. 6(1)(b) GDPR)

  • Consent (Art. 6(1)(a) GDPR)

  • Legitimate interest (Art. 6(1)(f) GDPR)

  • Legal obligation (Art. 6(1)(c) GDPR)

Where we rely on legitimate interests (e.g., security, fraud prevention, service analytics), we balance our interests against your rights and apply appropriate safeguards. You may object to such processing (see Section 9).

We do not use your data for automated decision-making that produces legal or similarly significant effects.

To monitor and enforce compliance with our Acceptable Use Policy and ensure that discount requests or business listings do not include prohibited or inappropriate products.

---------------------------------

​

​5. Communications and Notifications

Service messages. We send transactional notifications (e.g., request updates, security alerts). These are not marketing and cannot be unsubscribed from while you use the App.
Marketing. You may opt in to marketing emails/push about offers and news. The toggle is off by default in Profile → Settings and can be withdrawn at any time or via “unsubscribe.”
Proof of consent. We log the date/time of consent and withdrawal for compliance.
Push notifications. You can enable/disable push notifications in the App and/or device settings at any time.

---------------------------------

​

6. Sharing Your Data

We share your data only as necessary:

  • Participating businesses you choose to contact (they become independent controllers for their responses and further processing—review their privacy notices).

  • Service providers (processors) for hosting, analytics, notifications, support and security (e.g., cloud hosting, email/SMS/push providers). We bind them by contracts to process data only on our instructions.

  • Legal and safety where required by law or to protect rights, safety, and integrity of the service.
    We do not sell your personal data.

We may remove or block data shared with businesses if we detect that it involves restricted or prohibited content or violates applicable laws or platform policies.

We do not sell your personal data.

---------------------------------

​

7. International Data Transfers

If data is transferred outside the EU/EEA, we ensure adequate safeguards through:

  • EU Commission adequacy decisions, or

  • Standard Contractual Clauses (SCCs).

Where Standard Contractual Clauses (SCCs) are used, we also apply supplementary measures (e.g., encryption in transit/at rest, access controls) and conduct transfer assessments where appropriate.

---------------------------------

​

8. Data Retention

  • Account data and account deletion: Your account data is kept while your account is active. You can delete your Bonoos account at any time directly in the app under Profile → Settings → Delete account. When you do this, we:

  • permanently delete your login account so you can no longer sign in, and

  • irreversibly anonymize your customer profile by removing your name, contact details, address information and other identifiers from our customer database.

After anonymization, historical discount requests and related activity may be retained in a de-identified form (no longer linked to an identifiable person) for analytics, service quality, fraud prevention and to protect our rights. We apply the retention periods set out below to this de-identified data, and we retain data longer only if required by law or to establish or defend legal claims.

  • Discount requests and related messages: retained for up to 24 months to help you track history, then anonymized or deleted.

  • Consent records and complaint logs: up to 5 years for compliance.

  • Security logs: up to 12 months.

  • Backups: encrypted rolling backups are typically retained for up to 35 days.
    We may retain data longer if required by law or to establish/defend legal claims    .

---------------------------------

​

9. How to Make a Data Rights Request

Under GDPR, you have the right to:

  • Access your data.

  • Request correction or deletion.

  • Request restriction of processing.

  • Request data portability.

  • Object to certain processing, including marketing.

If you can still access the app, the fastest way to delete your account is to use the in-app Delete account option described above. If you cannot access your account, contact us by email and we will assist you.

To exercise your rights:
Email us at gdpr_app@gobonoos.com stating which rights you want to exercise and providing enough information to verify your identity (e.g., account email).

We will respond within 1 month. In complex cases, this may be extended by up to 2 additional months.

You also have the right to lodge a complaint with a supervisory authority (e.g., Datatilsynet, Denmark) or your local authority in the EEA/UK.

Deleting your account (via Profile → Settings → Delete account) deletes your login account and removes or irreversibly anonymizes your personal data in active systems. Any remaining copies in system backups are overwritten automatically at the end of the normal backup cycle.

​

---------------------------------

​

10. Security

  • We use encryption, access controls, and secure servers to protect your data. 

  • We use encryption in transit and at rest, strict access controls, least-privilege permissions, and routine security reviews.

  • We also use monitoring and alerts to detect abuse or anomalous activity.

  • We also apply automated filters and manual reviews to detect and prevent misuse or the submission of prohibited content.

---------------------------------

​

11. Changes to This Policy

We may update this Privacy Policy from time to time. Updates will be posted in the App with the new “Last updated” date. For material changes, we will provide in-app notice or email (where available) before the new terms take effect.

---------------------------------

​​

12. Children’s Privacy

The Bonoos app is suitable for general audiences and does not include or promote any mature or restricted content.

However, under EU and UK data protection laws, parental or guardian consent may be required for users under 16 years old (or the applicable digital consent age in your country). We do not knowingly collect personal data from children without such consent.

Bonoos does not display, promote, or allow any adult, sexual, or violent content that would be inappropriate for younger audiences.

---------------------------------

​13. Prohibited Content and Use

​

Basaamad Co
Users may not use Bonoos to request, share, or promote products or content that are illegal, harmful, or restricted under applicable laws or platform rules. This includes, without limitation:

  • Adult or sexually explicit material

  • Alcohol, tobacco, vaping, or drug-related products

  • Weapons, ammunition, explosives, or related accessories

  • Hate speech, harassment, or violent content

  • Fraudulent, deceptive, or misleading listings

Any violation may result in account suspension or removal without notice.

---------------------------------

​

14. Contact Us

​

Basaamad Co
Ståbyvej 22, 2740 Skovlunde

 

Privacy queries: privacy@gobonoos.com
Data rights: gdpr_app@gobonoos.com

bottom of page