This privacy policy has been compiled to better serve those who are concerned with how the ‘Personally Identifiable Information’ (PII) we hold is being used online. As described in EU privacy law and information security, this is information that can be used on its own or with other information to identify, contact, or locate a single person, or to identify an individual in context. Please read our privacy policy carefully to get a clear understanding of how we collect, use, protect or otherwise handle your Personally Identifiable Information in accordance with our website.


Please Note: This privacy policy has been created by BSP Fan Fund Limited and any duplication or distribution of this policy will be considered as copyright unless you have prior consent from us.



When ordering or registering on our site, as appropriate, you may be asked to enter your full name, company name, email address, phone number, Website URL or other details to help you with your experience and to provide you with relevant solutions and services which meet your requirements.


We collect information from you when you subscribe to a newsletter, respond to a survey, fill out a form, use live chat, open a support ticket or enter information on our site. We also collect information about how you respond to our services which may include email tracking in the form of opens and clicks as well as anonymised visitor recordings.


We may use client and organisational information we collect in the following ways:

  • To provide you with a service and issue contracts / agreements
  • To improve our website and services in order to better serve you as a client
  • To allow us to better service you in responding to your customer service requests
  • To administer a contest, promotion, survey or other site features
  • To ask for ratings and reviews of services or products you’ve purchased
  • To follow up correspondence (i.e. live chat, email or phone enquiries)
  • To configure a service or product externally i.e. Google Analytics
  • To provide material and correspondence by post

Our website is scanned on a regular basis for security holes and known vulnerabilities in order to make your visit to our site as safe as possible. We use regular Malware Scanning. Your personal information is contained behind secured networks and is only accessible by a limited number of persons who have special access rights to such systems, and are required to keep the information confidential. In addition, all sensitive/credit information you supply is encrypted via Secure Socket Layer (SSL) technology with our third-party payment provider (GoCardless). We implement a variety of security measures when a user enters, submits, or accesses their information to maintain the safety of your personal information. All transactions are processed through a gateway provider and are not stored or processed on our servers for added peace of mind.


Ensuring that your data is correct, up to date and accurate is important to us, therefore we have designed a system interface which allows you to update your own personal information as and when required. You can access this by visiting the BSP Fan Funder Billing Area and then navigating to the “Profile” page of your account.


If you would like to remove your personal information from our systems “the right to be forgotten” you can direct your request to our Data Protection Officer (DPO) David Taylor and we will ensure your request is fulfilled promptly. You can do this by emailing your request to with the subject “Removal Required” and the requested information which you would like removed from our systems.

Alternatively, you can use our data request form in order to request data we hold about you, portability, removal of your data and much more.



Below we have outlined organisations who act as a sub-processor on behalf of BSP Fan Fund Limited. These are organisations who hold, store or process data on behalf of BSP Fan Fund Limited and have been audited for GDPR compliance.

  • Site Ground (servers)
  • Google, Inc
  • Let’s Encrypt
  • Cloudflare, Inc
  • PayPal
  • WorldPay
  • Any other wholly-owned BSP Fan Fund Limited or BSP Funder Limited. subsidiary organisations.

Cookies are small files that a site or its service provider transfers to your computer’s hard drive through your Web browser (if you allow) that enables the site’s or service provider’s systems to recognise your browser and capture and remember certain information. For instance, we use cookies to help us remember and process the items in your shopping cart. They are also used to help us understand your preferences based on previous or current site activity, which enables us to provide you with improved services. We also use cookies to help us compile aggregate data about site traffic and site interaction so that we can offer better site experiences and tools in the future. You can view further information about how we use cookies on our website by visiting our cookie information page.



We do not sell, trade, or otherwise transfer to outside parties your Personally Identifiable Information unless we provide users with advance notice. This does not include website hosting partners and other parties who assist us in operating our website, conducting our business, or serving our users, so long as those parties agree to keep this information confidential. We may also release information when its release is appropriate to comply with the law, enforce our site policies, or protect ours or others’ rights, property or safety. However, non-personally identifiable visitor information may be provided to other parties for marketing, advertising, or other uses.


  • Google Display Network Impression Reporting
  • Google Analytics
  • Demographics and Interests Reporting
  • Clicky Analytics


We, along with third-party vendors such as Google use first-party cookies (such as the Google Analytics cookies) and third-party cookies (such as the DoubleClick cookie) or other third-party identifiers together to compile data regarding user interactions with ad impressions and other ad service functions as they relate to our website.



We use Google AdSense Advertising on our website. Google, as a third-party vendor, uses cookies to serve ads on our site. Google’s use of the DART cookie enables it to serve ads to our users based on previous visits to our site and other sites on the Internet. Users may opt-out of the use of the DART cookie by visiting the Google Ad and Content Network privacy policy.



Occasionally, at our discretion, we may include or offer third-party products or services on our website. These third-party sites have separate and independent privacy policies. We, therefore, have no responsibility or liability for the content and activities of these linked sites. Nonetheless, we seek to protect the integrity of our site and welcome any feedback about these sites.



If you would like to opt-out of our cookie consent, please visit our cookie information page for instructions on how to do this. You can also opt-out of our marketing emails through our data subject form and we will ensure your request is fulfilled promptly.



As an ethical organisation we have and always will honour Do Not Track signals and Do Not Track notifications. We will never plant cookies, or use advertising when a Do Not Track (DNT) browser mechanism is in place.


It’s important to note that we do allow third-party behavioural tracking on our website which includes Google Analytics & Clicky. For more information please visit our cookie policy page. If you would like to opt-out of behavioural tracking, please email your request to


The Fair Information Practices Principles form the backbone of privacy law in the United States and the concepts they include have played a significant role in the development of data protection laws around the globe. Understanding the Fair Information Practice Principles and how they should be implemented is critical to comply with the various privacy laws that protect personal information.

In order to be in line with Fair Information Practices we will take the following responsive action, should a data breach occur we will:

  • Contact our third-party processor(s) in order to put into place our data breach procedures and processes
  • Inform affected individuals without undue delay about a breach when it is likely to result in a high risk to their rights and freedoms
  • Inform the supervisory authority for our processing activities
  • Notify the Information Commissioner’s Office (ICO) of a breach within 72 hours of becoming aware of it, even if we do not have all the details
  • Put into place our process to assess the likely risk to individuals as a result of a breach
  • We may also temporarily remove access to our service completely, in order to mitigate damage and protect sensitive data we hold


Opting out (‘the right to object’):

If you would like to opt-out of our cookie consent, please visit our cookie information page for instructions on how to do this. You can also opt-out of our marketing emails through our data subject form and we will ensure your request is fulfilled promptly.


Right to erasure (‘right to be forgotten’):

Ensuring that your data is correct, up to date and accurate is important to us, therefore if your details change you should let us know via email or phone at the earliest possibility. If you would like remove your personal information from our systems “the right to be forgotten” you can send your request through our data subject form and we will ensure your request is fulfilled promptly.


Right to data portability

The right to data portability allows individuals to obtain and reuse their personal data for their own purposes across different services. It allows them to move, copy or transfer personal data easily from one IT environment to another in a safe and secure way, without affecting its usability. You can send your request through our data request form and we will ensure that your request is fulfilled promptly. you can opt out by visiting the Network Advertising Initiative Opt-Out page or by using the Google Analytics Opt-Out Browser Add-on. If you would like to opt-out of our cookie consent, please visit our
cookie information.


We agree to the following:

  • Not use false or misleading subjects or email addresses.
  • Identify the message as an advertisement in some reasonable way.
  • Include the physical address of our business or site headquarters.
  • Monitor third-party email marketing services for compliance, if one is used.
  • Honor opt-out/unsubscribe requests quickly.
  • Allow users to unsubscribe by using the link at the bottom of each email.


If at any time you would like to unsubscribe from receiving future emails, you can email us at You can also follow the instructions at the bottom of each email. and we will promptly remove you from ALL correspondence.



When it comes to the collection of personal information from children under the age of 13 years old, the Children’s Online Privacy Protection Act (COPPA) puts parents in control. The Federal Trade Commission, United States’ consumer protection agency, enforces the COPPA Rule, which spells out what operators of websites and online services must do to protect children’s privacy and safety online. However, it’s important to note, that we do not market our services to children under the age of 13 years old.



If there are any questions regarding this privacy policy, you may contact us using the information below:


BSP Funder Ltd is a privately held limited company which was registered at (Companies House – Cardiff) on 01/01/2019.

Registered Office:

BSP Funder Ltd

1 Ecclesall Road South


S11 9PA


Company No: 11584130

By email:

If this has not answered your question, please contact our team on to contact us for more information.
Published: 01-02-2019