Privacy Policy

This Privacy Policy explains how Moons London (“we”, “us”, “our”) collects, uses, stores, and protects your personal data when you use our website or engage with our services.

We are committed to protecting your privacy and handling your personal data transparently and securely, in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

1. Who We Are

Moons London provides tailored finance and vehicle funding solutions, including Hire, Operating Lease, Finance Lease, Invoice Finance, and Commercial Mortgage introductions.

Where applicable:

Moons London Ltd is authorised and regulated by the Financial Conduct Authority (FRN: [Insert Number]) as a credit broker, not a lender.

Registered Office: [Insert Address]
Registered in England and Wales No: [Insert Company Number]

For the purposes of data protection law, Moons London Ltd is the “data controller” of your personal data unless otherwise stated.

2. What Personal Data We Collect

We may collect and process the following categories of personal data:

Identity Information

Full name

Date of birth

Job title

Company details

Contact Information

Email address

Telephone number

Postal address

Financial Information

Bank details

Income and financial position

VAT registration details

Credit-related information

Business Information

Company registration details

Trading history

Invoice information (for Invoice Finance enquiries)

Technical Information

IP address

Browser type and version

Device information

Website usage data (via cookies)

Communication Data

Records of correspondence

Call recordings (where applicable)

Enquiry submissions

3. How We Use Your Personal Data

We process your personal data for the following purposes:

To respond to enquiries

To assess eligibility for finance products

To introduce you to lenders (where acting as a credit broker)

To administer finance applications

To verify your identity and prevent fraud

To comply with legal and regulatory obligations

To improve our website and services

To manage ongoing client relationships

We will only process your personal data where we have a lawful basis to do so.

4. Lawful Bases for Processing

Under UK GDPR, we rely on one or more of the following lawful bases:

Contract – Where processing is necessary to enter into or perform a contract

Legal Obligation – To comply with regulatory or legal requirements

Legitimate Interests – To operate and improve our business, provided your rights are not overridden

Consent – Where you have provided explicit consent (e.g., marketing communications)

You may withdraw consent at any time where processing is based on consent.

5. Sharing Your Information

We may share your personal data with:

Lenders and finance providers

Credit reference agencies

Professional advisers (legal, compliance, accounting)

Regulatory authorities

IT and system service providers

Fraud prevention agencies

Where we introduce you to a lender, that lender will process your personal data in accordance with their own privacy policy.

We will never sell your personal data.

6. Credit Reference & Fraud Prevention

When you apply for finance, we and/or the lender may:

Conduct credit checks

Verify your identity

Share information with credit reference and fraud prevention agencies

This may leave a footprint on your credit file.

7. Data Retention

We retain personal data only for as long as necessary to:

Fulfil the purposes for which it was collected

Meet legal, regulatory, and accounting requirements

Resolve disputes and enforce agreements

Retention periods may vary depending on the nature of the relationship and regulatory obligations.

8. Data Security

We implement appropriate technical and organisational measures to protect your personal data, including:

Encryption of data transmissions

Secure systems and access controls

Staff training and confidentiality obligations

Secure data storage and disposal procedures

While we take reasonable steps to safeguard your information, no system can guarantee absolute security.

9. International Transfers

We do not routinely transfer personal data outside the UK. If any data is transferred internationally, we will ensure appropriate safeguards are in place in accordance with UK GDPR.

10. Your Rights

Under data protection law, you have the right to:

Access your personal data

Request correction of inaccurate data

Request erasure (in certain circumstances)

Restrict processing

Object to processing

Request data portability

Withdraw consent where applicable

You also have the right to lodge a complaint with the Information Commissioner’s Office (ICO):

Information Commissioner’s Office
www.ico.org.uk

We would welcome the opportunity to address your concerns before you approach the ICO.

11. Marketing Communications

We may send you marketing communications where you have consented or where we have a legitimate interest to do so.

You can opt out of marketing communications at any time by:

Clicking the unsubscribe link in emails

Contacting us directly

12. Cookies

Our website uses cookies and similar technologies. For full details, please refer to our Cookie Policy.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. The latest version will always be available on our website.

14. Contact Us

If you have any questions about this Privacy Policy or how we handle your personal data, please contact us using the details provided on our website.