Privacy statement

At monkeyproof, we deeply value our clients’ privacy, and follow all UK regulations on data protection. You have the right to privacy when using the internet and we do everything within our power to ensure this.

The policies in this privacy statement refer to (the “site”) and describe the information collected and what may happen to it. The policy makes reference only to data gathered directly from the site and does not apply to any third party (kindred spirit) linked to from the site.

The information we collect

As part of the daily carrying-out of our business we collect basic personal information (eg name, address, email address).

How we use your information

Your information is used exclusively internally, for the purposes for which it was provided. If you send us correspondence such as emails or letters, we may gather this and put it in a folder that is specific to you. By using the site and placing your order with us, you are consenting to the collection and use of your personal information by us. You should note that we may use the information we have collected about you to contact you and deliver information to you about our services generally. If you do not want us to contact you, simply email us with “unsubscribe” in the subject line.


Although we prefer biscuits, cookies are an almost inevitable part of daily life in cyberspace, and this site does use them.  To limit or block the cookies which are set by the site, you can amend your browser’s privacy settings. The “Help” function within your web browser will explain how this is done.  You can also visit to find out how to limit or block cookies on an array of browsers.  There are details on how to delete cookies as well as general information about them.  For information on how to deal with cookies on your mobile phone you will need to refer to the manufacturer’s guide.

Third parties

We will never knowingly disclose client information to third parties, except when we are required to do so by any government or judicial authority, when such disclosure is deemed necessary or appropriate, with regard to legal proceedings, or investigations into unlawful activity.

Data subjects

Data subjects may request a copy of the personal information held about them by emailing us with “subject access request” in the subject line.

Accessing, reviewing and changing your personal information

You can review and change the information you have submitted to us. On written request, we will remove your personal information from our database; however, you should note that while we will endeavour to remove all your information, legal and technical constraints mean that we cannot guarantee to remove it completely.


We use various security techniques to protect your data from unauthorised access, but the nature of the internet is such that we cannot guarantee complete security.

Changes to this policy

We reserve the right to change or add to this policy at any time. If we decide to make any changes, we will detail those changes on this page and will also highlight the fact that changes have been made on our home page. However, if you have not used the site for some time, we recommend that you check the current policy carefully, to ensure that you are aware of any changes to the type of information we collect, how we use it, and the circumstances under which we would disclose it to third parties.

The eight principles of data protection

The Data Protection Act 1998 sets out eight rules that data controllers must follow for protecting personal information. Personal data must be:

  1. processed fairly and lawfully
  2. processed only for one or more specified and lawful purpose
  3. adequate, relevant and not excessive for those purposes
  4. accurate and kept up to date – data subjects have the right to have inaccurate personal data corrected or destroyed
  5. kept for no longer than is necessary for the purposes it is being processed
  6. processed in line with the rights of individuals – this includes the right to be informed of all the information held about them, the right to prevent processing of their personal information for marketing purposes, and the right to compensation if they can prove they have been damaged by a data controller’s non-compliance with the Act
  7. secured against accidental loss, destruction or damage and against unauthorised or unlawful processing – this applies even if the business uses a third party to process personal information on its behalf
  8. not transferred to countries outside the European Economic Area – the EU plus Norway, Iceland and Liechtenstein – that do not have adequate protection for individuals’ personal information, unless a condition from Schedule four of the Act can be met.

If a data controller’s processing of personal information does not comply with the principles, the Information Commissioner can take enforcement action against that data controller.