top of page

Privacy Policy

Last updated: 01 September 2025

​

Mi Madre UK Ltd. (“we”, “our”, “us”) values your privacy and is committed to protecting your personal information. This Privacy Policy explains how we collect, use, and safeguard your information when you place an order with us online, visit our website, or otherwise interact with our services.

​

1. Who We Are
​

We are Mi Madre UK, a takeaway restaurant based in London. For the purposes of data protection laws in the United Kingdom, we are the Data Controller of the personal information we process. If you have any questions about this Privacy Policy or how we handle your personal information, please contact us at hello@mimadre.co.uk

​​
2. Information We Collect

​

We may collect and process the following types of personal information when you use our website or place an order:

​

  • Identity Information: name, username, or similar identifiers.

  • Contact Information: email address, telephone number, delivery address.

  • Order Information: items ordered, order history, delivery instructions.

  • Payment Information: payment card details (processed securely via our payment provider; we do not store full card details).

  • Technical Information: IP address, browser type, device identifiers, and cookies (see Section 7).

​
3. How We Use Your Information

 

We use your personal information for the following purposes:

​

  • To process and deliver your orders.

  • To take payment and issue refunds.

  • To contact you about your order (e.g. delays, delivery updates).

  • To provide customer support and respond to enquiries.

  • To improve our website and services.

  • To send you marketing communications (only if you have opted in, and you may opt out at any time).

  • To comply with legal and regulatory obligations.

​

4. Legal Basis for Processing

​

We rely on the following legal bases under UK GDPR:

​

  • Contract: to process your orders and provide our services.

  • Legal Obligation: to comply with laws and regulations (e.g. tax and accounting).

  • Consent: where you have opted in to receive marketing communications.

  • Legitimate Interests: to improve our services and ensure website security.

​
5. Sharing Your Information

​

We only share your personal information with trusted third parties when necessary, such as:

​

  • Payment processors (for secure payment transactions).

  • Delivery partners (to deliver your orders).

  • IT and website hosting providers (for site functionality and security).

  • Professional advisers (accountants, auditors, legal consultants, if required).

  • Authorities (where legally required, e.g. HMRC).

​

We do not sell your personal data to third parties.

​

6. Data Retention

​

We retain your personal information only for as long as necessary to fulfil the purposes outlined in this Privacy Policy, including for legal, accounting, or reporting requirements. Generally:

​

  • Order and transaction records: kept for up to 6 years (as required by law).

  • Marketing data: kept until you withdraw your consent or opt out.

  • Other personal data: kept only as long as necessary.

​

7. Cookies and Tracking Technologies

​

Our website uses cookies to enhance your browsing experience, analyse website traffic, and improve functionality. Cookies may collect technical data such as IP address, device type, and browsing behaviour. You can manage or disable cookies in your browser settings. 

 

8. Your Rights

​

Under UK data protection law, you have the following rights:

​

  • Right of access – to request a copy of the personal data we hold about you.

  • Right to rectification – to correct inaccurate or incomplete data.

  • Right to erasure – to request deletion of your data where appropriate.

  • Right to restrict processing – to limit how we process your data.

  • Right to data portability – to obtain and reuse your data for your own purposes.

  • Right to object – to object to processing, including marketing.

  • Right to withdraw consent – where processing is based on consent.

  • Right to lodge a complaint – with the Information Commissioner’s Office (ICO): www.ico.org.uk.

​

To exercise any of these rights, please contact us using the details in Section 1.

​

9. Security of Your Information

​

We take reasonable technical and organisational measures to protect your personal data from unauthorised access, loss, misuse, or disclosure. While we strive to use secure systems, no method of transmission over the internet can be guaranteed 100% secure.

 
10. Changes to This Privacy Policy

​

We may update this Privacy Policy from time to time. Any updates will be posted on this page with the revised “Last Updated” date. We encourage you to review it periodically.

​

bottom of page