Privacy Policy

1. Introduction

At Be One Boss, we are committed to protecting the privacy of our users and ensuring the secure handling of their personal information. This privacy policy explains how we collect, use, disclose and protect the personal information you provide to us when using our website and services.

This website is operated by Ponme Saldo S.L, a company registered in Spain, with identification (CIF) B56516628 and address at Siete Picos 53, Móstoles, Madrid, CP 28935.

2. Information We Collect

In the framework of activities developed through this website, we will proceed to collect and process the following categories of data:

Personal data: including, but not limited to, full name, email address, phone number and physical address.
Usage data: related to user behavior within the platform, including order history, preferences, and other interactions performed on the site.
Payment data: those strictly necessary for processing economic transactions, which will be managed securely through third-party payment service providers, without directly storing sensitive information related to payment methods.

Additionally, automatically, through the use of cookies and other tracking technologies, non-personal information may be collected, such as demographic data or browsing patterns, for analysis and improvement of user experience.

3. Purposes of Personal Data Processing

The personal data collected will be processed for the following purposes:

Service provision: Primarily, to manage and execute user requests, including, but not limited to, the provision of mobile recharge services, eSIM acquisition, gift card purchases, service and utility payments, as well as access and use of the flight search engine.
User relationship management: Furthermore, the provided information will be used to establish communications related to user account administration, handling requests, complaints or inquiries, and providing technical support or customer service.
Service improvement: Similarly, information related to platform usage will be analyzed to improve the functionality, quality and efficiency of services offered, as well as to personalize and optimize the browsing and platform usage experience.
Commercial communications: In cases where the user has given prior consent, their personal data may be used to send commercial communications, promotions and offers related to products and services available on our platform that may be of interest.
Legal compliance: Finally, personal data will be processed to comply with legal, regulatory or administrative obligations applicable under current regulations.

5. Security Measures and Personal Information Protection

We implement technical, administrative and physical security measures designed to protect personal information against unauthorized access, misuse, alteration or improper disclosure.

We use SSL (Secure Socket Layer) encryption protocols to safeguard the transmission of confidential data, including payment details, between the user's browser and our servers.

We maintain internal security procedures to preserve the integrity, confidentiality and availability of personal information stored in our systems.

By using our website and services offered, the user accepts the collection, processing, disclosure and protection of their personal information as set forth in this privacy policy. If you have questions or concerns related to our privacy policy, the user may contact us through the available channels.

6. Information Security

At Be One Boss, we are committed to implementing robust technical, administrative and organizational security measures to protect users' personal information against a wide range of threats and risks. These measures aim to ensure data integrity, confidentiality and availability, as well as prevent unauthorized access, improper disclosure, alteration or destruction of information.

For this purpose, we apply SSL/TLS encryption protocols to protect the transmission of confidential data between users' browsers and our servers, as well as encryption of data stored in our databases.

Our network infrastructure has firewall systems configured to filter and control network traffic, allowing only authorized access to resources and blocking malicious or suspicious activities.

We also implement robust authentication measures, such as the use of secure passwords and, when applicable, two-factor authentication (2FA), to protect user accounts against unauthorized access. We apply the principle of least privilege in access control, ensuring that only authorized personnel have access to data necessary for performing their specific functions.

We have monitoring and intrusion detection systems that continuously supervise the activity of our networks and systems, generating automatic alerts for any suspicious activity and enabling immediate response.

Our systems and applications are kept updated with timely application of security patches and corrections, following industry best practices, to protect our infrastructures against known vulnerabilities.

We have clearly defined internal information security policies and procedures that are communicated and applied to all our personnel, regulating aspects such as secure password management, device protection and security incident response.

We also provide information security training and awareness programs to all our employees to promote the adoption of good practices and strengthen our data protection culture.

Finally, at Be One Boss we conduct periodic information security risk assessments to identify and address new threats, as well as to drive continuous improvement of our protection measures.

Despite implementing robust security measures, the user acknowledges that no data transmission or storage system can guarantee absolute security. Consequently, Be One Boss cannot ensure or guarantee the total security of information transmitted through its platforms. The user is responsible for maintaining the confidentiality of their access credentials and adopting necessary measures to protect their own personal information.

7. Transaction Security

At Be One Boss, we take the protection of financial transactions conducted through our website with utmost seriousness. We recognize the importance of safeguarding users' financial and personal information throughout the transaction process, implementing specific security measures designed to ensure their confidentiality and integrity.

Use of Security Protocols (SSL/TLS)

We use reliable security protocols, such as Secure Socket Layer (SSL) and Transport Layer Security (TLS), to encrypt data communication during transmission between the user's browser and our servers.

Industry Standards Compliance (PCI DSS)

We commit to complying with industry security standards, particularly the Payment Card Industry Data Security Standard (PCI DSS), which establishes technical and organizational requirements designed to protect credit and debit card information.

Advanced Financial Information Protection

Financial information stored in our systems is protected through advanced security measures, including encryption of sensitive data in databases and storage systems, to prevent unauthorized access and information leakage.

Monitoring and Intrusion Detection

We implement monitoring and intrusion detection systems that continuously supervise transactions and platform activity, to identify suspicious patterns or unusual behaviors that may indicate fraud attempts or security violations.

Robust Authentication Measures

We apply robust user authentication measures, including secure passwords and two-factor authentication (2FA) when applicable, to ensure that only properly authorized users can conduct transactions through our platform.

User Education and Resources

We provide educational information and resources to users, aimed at promoting secure practices during online transactions, such as electronic fraud prevention, password protection and identification of phishing attempts.

Incident Response Procedures

We have security incident response procedures that allow immediate action when threats or breaches are detected, to minimize impact and protect users' financial and personal information.

In summary, at Be One Boss we are committed to ensuring the security and confidentiality of financial transactions conducted through our website. Our security measures are subject to continuous review and updating, to adapt to the constant evolution of technological threats and strengthen user protection.

However, the user acknowledges that no data transmission or storage can guarantee absolute security. Consequently, Be One Boss cannot ensure or guarantee total system invulnerability against unauthorized access by third parties, with users assuming their share of responsibility in protecting their access credentials and devices.

8. Identity and Access Management

At Be One Boss, authentication and access control are fundamental elements for ensuring information security and protecting our users' sensitive data. To this end, we establish clear policies and procedures designed to manage user credentials, authenticate users securely and control access to functions and sensitive data, according to business needs and best practices in information security.

User Credential Management

We implement policies and procedures for secure management of user credentials, including creation, modification and deletion of user accounts. We require the use of passwords that meet minimum complexity and length requirements, and encourage their periodic change.

Secure User Authentication

We use robust authentication methods to verify user identity during the login process. In addition to username and password, we may implement additional authentication factors, such as two-factor authentication (2FA) or biometric methods, to add an additional layer of security.

Role-Based Access Control

We establish a role-based access control (RBAC) system that regulates access to functions and sensitive data within the platform. Users are assigned to specific roles that determine their access permissions, ensuring they only access information and functionalities necessary for performing their activities.

Access Supervision and Auditing

We have access supervision and auditing systems that record and monitor user activities within the website. This allows us to detect unauthorized access attempts or anomalous behaviors, as well as generate records for compliance and traceability purposes.

Sensitive Data Protection

We apply additional security measures to data considered sensitive, such as users' financial or personal information, ensuring they are only available to properly authorized users and are protected during transmission and storage through encryption and additional access controls.

User Training and Awareness

We provide training programs and educational resources for users to promote the adoption of secure practices in authentication and access control. This training covers secure password management, user credential protection and identification of threats such as phishing or social engineering.

In summary, at Be One Boss we have implemented a comprehensive set of policies, procedures and technical and organizational measures that ensure adequate user authentication and effective access control, thus strengthening sensitive data protection and contributing to our platform's overall security.

15. Contact

For any questions about our Privacy Policy, you can contact us at:
Email: [email protected]
Address: Calle Siete Picos, 53, Madrid, Spain, C.P. 28935