Privacy Policy






Privacy Policy – MohammedAli.tv


PRIVACY POLICY

Last Updated: December 25, 2025
Effective Date: December 25, 2025

INTRODUCTION

Mohammed S Ali (“Company,” “we,” “us,” “our”) operates the website www.mohammedali.tv and its associated digital services.

Proprietor: Mohammed S Ali
Business Address: MATW P 77268, PO Box 6945
Location: London, London W1A 6US
Country: England, United Kingdom

We are committed to protecting your privacy in accordance with UK data protection laws, including the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

Website Type: mohammedali.tv is an informational travel vlog website. We do not offer user account creation or user-generated content posting. We only collect minimal personal data as described in this policy.

IMPORTANT: By using our services, you agree to this privacy policy under UK law.

TABLE OF CONTENTS

  1. Information We Collect
  2. Legal Basis for Processing (UK GDPR)
  3. How We Use Your Information
  4. Information Sharing Under UK Law
  5. International Transfers
  6. Data Retention
  7. Security Measures
  8. Your Rights Under UK GDPR
  9. Cookies and Tracking
  10. Children’s Privacy (UK Standards)
  11. Marketing Communications
  12. Data Breach Procedures
  13. ICO Complaints
  14. International Users
  15. Changes to This Policy
  16. Contact Information

1INFORMATION WE COLLECT

1.1 Personal Data You Provide

Under UK GDPR, “personal data” means any information relating to an identified or identifiable person. We collect:

Contact Data: Email address and name (only if you subscribe to our newsletter or contact us)
Communications Data: Information you provide when contacting us via email or contact forms
Marketing Data: Your preferences for receiving marketing communications (if subscribed to newsletter)

1.2 Technical Data Collected Automatically

  • Device Data: IP address, browser type and version, operating system
  • Usage Data: Information about your visit, including URL clickstreams, download errors, length of visits
  • Location Data: General geographic location inferred from IP address

1.3 Special Categories of Personal Data

Important Notice: We do NOT intentionally collect special categories of data including:

  • Racial or ethnic origin
  • Political opinions
  • Religious or philosophical beliefs
  • Health data
  • Biometric data
  • Data concerning sexual orientation

If you provide such data, we will delete it immediately upon discovery.

2LEGAL BASIS FOR PROCESSING (UK GDPR)

Under Article 6 of UK GDPR, we process your personal data based on:

2.1 Legitimate Interests (Article 6(1)(f))

  • Website security and fraud prevention
  • Analytics to improve our services
  • Direct marketing to existing customers
  • Business development and administration
Balancing Test: We have assessed that our legitimate interests do not override your fundamental rights and freedoms.

2.2 Contract Performance (Article 6(1)(b))

  • Responding to your enquiries and communications
  • Providing requested information about travel destinations
  • Delivering newsletter subscriptions (if requested)

2.3 Legal Obligation (Article 6(1)(c))

  • Compliance with UK tax obligations
  • Responding to lawful requests from UK authorities
  • Financial reporting requirements

2.4 Consent (Article 6(1)(a))

  • Marketing communications to non-customers
  • Non-essential cookies
  • Sharing data with specific partners for marketing
Withdrawal Rights: You may withdraw consent at any time without affecting the lawfulness of processing based on consent before its withdrawal.

3HOW WE USE YOUR INFORMATION

3.1 Service Provision

  • Operate and maintain our website
  • Provide travel content, guides, and recommendations
  • Respond to your enquiries and provide support
  • Send newsletters (if subscribed)
  • Improve user experience on our website

3.2 Business Operations

  • Analyse website performance and user behavior
  • Prevent fraud and ensure security
  • Comply with UK legal and regulatory requirements
  • Manage business relationships

3.3 Marketing (with appropriate legal basis)

  • Send promotional communications (with consent or legitimate interest)
  • Display targeted advertisements
  • Conduct market research
  • Improve our marketing effectiveness

4INFORMATION SHARING UNDER UK LAW

4.1 Lawful Sharing

We may share your personal data with:

Service Providers (Data Processors):

  • Website hosting providers (WordPress.com)
  • Analytics services (Google Analytics)
  • Email marketing platforms (for newsletters)
  • Content delivery networks (CDN)

Business Partners (Joint Controllers):

  • Travel booking platforms (Booking.com, Expedia)
  • Activity providers (GetYourGuide, Viator)
  • Affiliate marketing networks

Legal Requirements:

  • UK courts and tribunals
  • Law enforcement agencies
  • HMRC and other UK regulatory bodies
  • Legal advisors and auditors

4.2 Data Processing Agreements

All third-party processors are bound by written agreements ensuring:

  • Processing only on our documented instructions
  • Appropriate technical and organisational security measures
  • Assistance with data subject rights requests
  • Data deletion or return upon contract termination

5INTERNATIONAL TRANSFERS

5.1 Transfers Outside the UK

Some of our service providers are located outside the UK, including:

  • United States: Google (Analytics), Facebook (Advertising)
  • European Union: Various hosting and email services
  • Other Countries: As disclosed in our service provider list

5.2 Transfer Safeguards

We ensure adequate protection through:

  • Adequacy Regulations: Transfers to countries deemed adequate by UK Government
  • Standard Contractual Clauses (SCCs): As approved by the ICO
  • Certification Schemes: Where available and appropriate
  • Binding Corporate Rules: For multinational service providers

5.3 Your Rights Regarding Transfers

You have the right to:

  • Obtain information about transfer safeguards
  • Object to transfers in certain circumstances
  • Complain to the ICO about inadequate safeguards

6DATA RETENTION

6.1 Retention Periods

We retain personal data only as long as necessary for the purposes for which it was collected:

Newsletter Subscriptions: Until you unsubscribe + 12 months for suppression list
Contact Form Enquiries: 24 months from last communication
Financial Records: 7 years (UK tax law requirement for business records)
Marketing Data: Until you opt-out + 12 months for suppression
Analytics Data: 26 months maximum (anonymised thereafter)
Security Logs: 12 months for fraud prevention

6.2 Automated Deletion

We have implemented automated systems to delete data when retention periods expire, except where longer retention is required by UK law.

7SECURITY MEASURES

7.1 Technical Safeguards

In accordance with Article 32 UK GDPR:

  • Encryption: Data encrypted in transit (TLS 1.3) and at rest (AES-256)
  • Access Controls: Multi-factor authentication and role-based access
  • Monitoring: Continuous security monitoring and threat detection
  • Backups: Secure, encrypted backup systems

7.2 Organisational Measures

  • Staff Training: Regular data protection training for all personnel
  • Incident Response: Documented procedures for data breaches
  • Privacy by Design: Data protection considered in all new systems
  • Regular Audits: Annual security and privacy assessments

7.3 Breach Notification

In accordance with UK GDPR Articles 33-34:

  • ICO Notification: Within 72 hours of becoming aware of a breach
  • Individual Notification: Without undue delay if high risk to rights and freedoms

8YOUR RIGHTS UNDER UK GDPR

8.1 Individual Rights

Under UK GDPR, you have the following rights:

Right of Access (Article 15): Request copies of your personal data
Right of Rectification (Article 16): Correct inaccurate or incomplete data
Right of Erasure (Article 17): Request deletion of your data
Right to Restrict Processing (Article 18): Limit how we use your data
Right to Data Portability (Article 20): Receive your data in a structured format
Right to Object (Article 21): Object to processing based on legitimate interests
Rights Related to Automated Decision-Making (Article 22): Protection from solely automated decisions

8.2 Exercising Your Rights

Email: [email protected]
Post: Mohammed S Ali, MATW P 77268, PO Box 6945, London, London W1A 6US, United Kingdom

Response Time: Within one month (extendable by two months for complex requests)
Verification: We may request additional information to verify your identity
Free of Charge: Unless requests are manifestly unfounded or excessive

8.3 Limitations

Some rights may be limited by UK law, for example:

  • Legal obligations to retain certain data
  • Freedom of expression and information
  • Public interest or official authority tasks

9COOKIES AND TRACKING

9.1 UK Cookie Law Compliance

In accordance with the Privacy and Electronic Communications (EC Directive) Regulations 2003:

Strictly Necessary Cookies: Essential for website operation (no consent required)
Analytics Cookies: Google Analytics (consent required)
Advertising Cookies: Google AdSense, Facebook Pixel (consent required)
Preference Cookies: Store your settings (consent required)

9.2 Managing Cookie Preferences

You can control cookies through:

  • Our cookie consent banner
  • Browser settings
  • Industry opt-out tools (youronlinechoices.eu)
  • Google Ad Settings
Full Details: See our Cookie Policy at https://www.mohammedali.tv/MATVWP/cookie-policy/

10CHILDREN’S PRIVACY (UK STANDARDS)

10.1 Age of Digital Consent

In the UK, the age of digital consent is 13 years. However, we set our minimum age at 16 for enhanced protection.

10.2 Parental Consent

For users under 16, we require verifiable parental consent before processing personal data.

10.3 Special Protections

  • Enhanced security for children’s data
  • Limited data collection
  • No behavioural advertising to children
  • Easy withdrawal of consent mechanisms
Child Protection Contact: [email protected]

11MARKETING COMMUNICATIONS

11.1 UK Marketing Laws

We comply with UK marketing regulations including:

  • Privacy and Electronic Communications Regulations (PECR)
  • UK GDPR consent requirements
  • Advertising Standards Authority (ASA) codes

11.2 Consent Mechanisms

Opt-in Required: For all electronic marketing to individuals
Clear Consent: Specific, informed, and freely given
Easy Withdrawal: Unsubscribe links in all emails
Record Keeping: Documentation of consent for regulatory compliance

11.3 Legitimate Interest Marketing

For existing customers only, based on:

  • Similar products/services
  • Clear opt-out in every communication
  • Regular legitimate interest assessments

12DATA BREACH PROCEDURES

12.1 UK Legal Requirements

Under UK GDPR Articles 33-34:

Internal Detection: Continuous monitoring and incident response procedures
Risk Assessment: Evaluation of potential impact on individuals
ICO Notification: Within 72 hours if likely to result in risk to rights and freedoms
Individual Notification: Without undue delay if high risk

12.2 Breach Response

  • Immediate containment and investigation
  • Assessment of scope and impact
  • Implementation of remedial measures
  • Documentation of all actions taken
  • Review and improvement of security measures

13ICO COMPLAINTS

13.1 Your Right to Complain

You have the right to lodge a complaint with the UK supervisory authority:

Information Commissioner’s Office (ICO)
Website: ico.org.uk
Phone: 0303 123 1113
Post: Information Commissioner’s Office, Wycliffe House, Water Lane, Wilmslow, Cheshire SK9 5AF

13.2 When to Complain

  • Concerns about how we process your personal data
  • Delayed response to rights requests
  • Suspected data breaches
  • Marketing communications sent without proper consent

14INTERNATIONAL USERS

14.1 Jurisdictional Notice

This privacy policy is governed by UK law. International users should note:

Primary Jurisdiction: United Kingdom
Applicable Law: UK GDPR and Data Protection Act 2018
Dispute Resolution: UK courts have jurisdiction

14.2 Additional Rights

Users in certain jurisdictions may have additional rights:

  • EU/EEA: Continued GDPR protections
  • California: CCPA rights (limited application)
  • Other Regions: Local privacy law protections
International Rights Requests: [email protected]

15CHANGES TO THIS POLICY

15.1 UK Law Updates

We will update this policy to reflect:

  • Changes in UK data protection law
  • ICO guidance and regulations
  • New services or business practices
  • Technical developments

15.2 Notification Process

Significant Changes:

  • Email notification + website notice

Minor Updates:

  • Website notice + updated “Last Modified” date

Legal Changes:

  • Immediate implementation with notification

16CONTACT INFORMATION

16.1 Data Controller

Proprietor: Mohammed S Ali
Business Address: MATW P 77268, PO Box 6945
Location: London, London W1A 6US
Country: England, United Kingdom

16.2 Privacy Enquiries

Email: [email protected]

Subject Lines:

  • “Data Subject Rights” – for exercising UK GDPR rights
  • “Privacy Concern” – for general privacy issues
  • “Data Breach Report” – for security incidents

16.3 Response Commitment

  • Acknowledgment: Within 48 hours
  • Full Response: Within 30 days (UK GDPR requirement)
  • Complex Requests: Up to 90 days with explanation

16.4 Professional Advice

For complex data protection matters, we recommend consulting:

  • UK data protection lawyers
  • ICO guidance materials
  • Industry-specific regulations
This privacy policy constitutes our commitment to UK data protection standards and your privacy rights under UK law.

© 2025 Mohammed S Ali. All rights reserved.

mohammedali.tv | London, United Kingdom