Privacy Policy

Last updated: 10 February 2025

BoonRadar is operated by Boonwerks Inc. (“we”, “us”, “our”). This policy explains how we collect, use, and protect information when you interact with the BoonRadar network.

Information we collect

Report submissions

When merchants submit an incident we collect reporter contact details, company information, Stripe dispute metadata, subject identifiers (email, domain, Stripe customer ID), incident descriptions, and evidence links.

Appeals & takedowns

Flagged parties may submit appeals containing contact information, explanations, and supplemental documentation. We log correspondence to maintain an auditable record.

Access requests

Prospective partners provide business contact information, intended use cases, and compliance requirements. We also collect email metadata when you contact us.

How we use information

Validate and adjudicate incident reports and appeals.
Provide anonymized risk signals to verified BoonRadar members.
Communicate with contributors, partners, and flagged parties.
Comply with legal obligations, including responding to subpoenas or lawful requests.
Improve fraud detection models, alerting workflows, and operational tooling.

Legal basis

For merchants located in the United States we rely on legitimate interest in reducing payment fraud and contractual necessity to provide the BoonRadar service. International users should obtain legal guidance before transmitting personal data to us.

Data minimization & retention

We hash consumer identifiers where practical, redact card numbers and financial account data, and encrypt sensitive files at rest. Raw evidence is retained for as long as a report remains active plus one year, unless law requires longer storage. We delete or anonymize data when it is no longer needed.

Sharing with third parties

We do not sell personal data. We may share limited information with:

Verification partners and legal counsel bound by confidentiality obligations;
Vendors providing secure hosting, storage, or communications infrastructure;
Law enforcement or regulators when legally compelled.

Your choices

If you are referenced in a BoonRadar report you may:

Request a copy of the information we maintain about you.
Submit corrections or additional context via the appeals process.
Request deletion when the report is inaccurate or no longer relevant.

To exercise these rights, email [email protected] with your reference ID. We may require identity verification before processing your request.

Security

We implement access controls, encryption, audit logging, and regular security reviews. No system is perfectly secure; notify [email protected] about suspected vulnerabilities.

Policy updates

We will post any privacy policy updates on this page and revise the “Last updated” date. Material changes will be communicated to active contributors and affected parties.