đź”’ Privacy Policy

Effective Date: 1st December, 2020
Last Updated: 7th August, 2025

1. Who We Are

This Privacy Policy explains how we collect, use, share, and protect your personal data. We operate as a lead generation company under the trading name Money Saving Guru and may operate additional branded websites.

Data Controller:
Digital Roo Ltd
15 West Street, Brighton, England, BN1 2RL
Email: compliance@digitalroo.co.uk
Registered in England and Wales
Company Number: 11496923

2. What Personal Data We Collect

We may collect the following types of data when you use our website:

  • Contact details: name, phone number, email address, postcode
  • Demographic details: date of birth, marital status, employment status
  • Financial information: income, expenses, mortgage details, credit profile (if entered)
  • Lead qualification data: answers you provide in our web forms
  • Technical data: IP address, browser type, device ID, referral source
  • Location data: approximate geographic location based on your IP address
  • Cookies & tracking data: see our [Cookies Policy]

3. How We Collect Your Data

We collect personal data when you:

  • Fill in a form on our website
  • Click on our advertisements (e.g. Facebook, Google, TikTok)
  • Interact with our website or landing pages
  • Communicate with us via email or phone

We may also use tools and analytics to detect your geographic location, device type, and browsing behaviour using your IP address and browser data.

4. How We Use Your Data

We use your personal data to:

  • Match you with a relevant third-party provider or adviser
  • Share your enquiry with selected partners so they can contact you
  • Optimise which provider receives your enquiry, based on your form responses and approximate location
    Improve the performance and experience of our website
  • Comply with legal or regulatory obligations
  • Send follow-up communications, where permitted

By submitting your information, you acknowledge that we may share your data with relevant third-party providers who may offer financial services. In some cases, we may receive a fee or commission from these partners when we introduce you to them.

5. How Decisions Are Made About Your Data

Some decisions about which partner receives your enquiry are made automatically based on your form responses and geographic location. For example:

  • Your answers may determine which product or provider is most relevant
  • Leads with similar answers may be distributed using a round-robin system

These decisions are made using automated business rules. They do not involve pricing, eligibility, or credit decisions. You may request human review or object to this type of processing at any time.

6. Who We Share Your Data With

We may share your data with:

  • Selected third-party partners or clients who offer the services you’re interested in
  • Our technology providers, who help us store and process your data securely. These include:
    • Leadbyte (lead distribution and CRM management)
    • Leadshook (form logic and data capture)
    • Vultr (cloud infrastructure for hosting)

All third-party processors are contractually obligated to comply with UK GDPR and to process your data securely and only as instructed.

We do not share your data with unrelated parties. We never sell your data in bulk or for general marketing lists.

7. Lawful Basis for Processing

We rely on the following legal bases:

  • Consent – when you provide your details and agree to be contacted
  • Legitimate interests – in operating our service and matching you with relevant providers
  • Legal obligations – where we must comply with applicable laws or industry regulations

8. How Long We Keep Your Data

We retain your personal data for only as long as necessary:

  • Unconverted leads: typically up to 12 months
  • Converted leads: according to the policies of the receiving provider
  • Analytics & cookie data: typically up to 26 months, depending on the platform

We regularly review and securely delete data when it is no longer required.

9. International Transfers

Some of our providers may process data outside the UK. When this happens, we ensure that your data is protected by:

  • UK-approved standard contractual clauses, or
  • Adequacy decisions for countries with equivalent data protections

10. Your Rights

Under UK GDPR, you have the right to:

  • Access your personal data
  • Correct any inaccuracies
  • Withdraw your consent at any time
  • Object to or restrict certain processing
  • Request deletion of your data
  • Request human review of automated decisions
  • Lodge a complaint with the Information Commissioner’s Office (ICO)

To exercise your rights, contact us at compliance@digitalroo.co.uk.

11. How We Keep Your Data Safe

We take appropriate steps to protect your personal data, including:

  • Secure cloud infrastructure provided by Vultr
  • Encryption of data in transit and at rest
  • Firewalls and access controls
  • Internal policies and staff confidentiality training

12. Profiling & Ad Targeting

We may use tools like Google Ads, Meta Pixel, TikTok Pixel, or other analytics platforms to understand your behaviour and interests. This helps us improve advertising relevance and website performance.

These tools may track how you interact with our website and use this data to serve personalised ads on other platforms.
For more information, and to control these settings, please see our Cookies Policy.

13. Support for Vulnerable Individuals

We aim to ensure that everyone can access our services fairly and without discrimination. If you have specific accessibility needs or feel that a vulnerability may affect how you use our website or understand this policy, please contact us. We will do our best to support you.

14. Third-Party Links

Our website may contain links to third-party websites. We are not responsible for their content or privacy practices. Please review their policies before submitting any data.

15. Updates to This Policy

We may update this Privacy Policy from time to time. Any changes will be published on this page, with a revised “Last Updated” date above. Please check back regularly to stay informed.

16. Children’s Privacy

Our services are not intended for anyone under the age of 18. We do not knowingly collect personal data from children. If we become aware that we have collected data from a minor, we will delete it promptly. If you believe we have mistakenly collected information from a child, please contact us.