We value your privacy

We use cookies to enhance your browsing experience and analyze our traffic. Read our Privacy Policy.

Mori Sobhani LogoMori Sobhani

Privacy Policy (GDPR Compliant)

Last updated: 6 April 2026

Welcome to Mori Sobhani's website. I respect your privacy and am committed to protecting your personal data in compliance with the General Data Protection Regulation (GDPR) and the UK GDPR. This privacy policy will inform you as to how I look after your personal data when you visit my website and tell you about your privacy rights and how the law protects you.

1. Important Information and Who I Am

Data Controller: Mori Sobhani is the data controller and is responsible for your personal data (collectively referred to as "I", "me", or "my" in this privacy policy).

This privacy policy aims to give you information on how I collect and process your personal data through your use of this website, including any data you may provide through this website when you sign up to a newsletter, purchase a product or service, or take part in a competition.

This website is not intended for children and I do not knowingly collect data relating to children.

2. The Data I Collect About You

Personal data, or personal information, means any information about an individual from which that person can be identified. It does not include data where the identity has been removed (anonymous data).

I may collect, use, store and transfer different kinds of personal data about you which I have grouped together as follows:

  • Identity Data includes first name, last name, username or similar identifier.
  • Contact Data includes email address and telephone numbers.
  • Technical Data includes internet protocol (IP) address, your login data, browser type and version, time zone setting and location, browser plug-in types and versions, operating system and platform, and other technology on the devices you use to access this website.
  • Usage Data includes information about how you use my website, products and services.
  • Marketing and Communications Data includes your preferences in receiving marketing from me and your communication preferences.

3. How Is Your Personal Data Collected?

I use different methods to collect data from and about you including through:

  • Direct interactions. You may give me your Identity and Contact Data by filling in forms or by corresponding with me by post, phone, email or otherwise.
  • Automated technologies or interactions. As you interact with my website, I will automatically collect Technical Data about your equipment, browsing actions and patterns. I collect this personal data by using cookies, server logs and other similar technologies. Please see my Cookie Policy for further details.

4. Legal Basis for Processing Your Data

Under the GDPR, I must have a valid legal basis to process your personal data. I rely on the following legal bases:

  • Consent: You have given clear consent for me to process your personal data for a specific purpose (e.g., subscribing to a newsletter).
  • Contract: The processing is necessary for a contract I have with you, or because you have asked me to take specific steps before entering into a contract.
  • Legitimate Interests: The processing is necessary for my legitimate interests or the legitimate interests of a third party, unless there is a good reason to protect your personal data which overrides those legitimate interests.
  • Legal Obligation: The processing is necessary for me to comply with the law.

5. Data Security

I have put in place appropriate security measures to prevent your personal data from being accidentally lost, used or accessed in an unauthorised way, altered or disclosed. In addition, I limit access to your personal data to those employees, agents, contractors and other third parties who have a business need to know. They will only process your personal data on my instructions and they are subject to a duty of confidentiality.

6. Data Retention

I will only retain your personal data for as long as reasonably necessary to fulfil the purposes I collected it for, including for the purposes of satisfying any legal, regulatory, tax, accounting or reporting requirements. I may retain your personal data for a longer period in the event of a complaint or if I reasonably believe there is a prospect of litigation in respect to my relationship with you.

7. Your Legal Rights Under GDPR

Under the GDPR, you have the following rights in relation to your personal data:

  • The right to be informed: You have the right to be informed about the collection and use of your personal data.
  • The right of access: You have the right to request a copy of the personal data I hold about you.
  • The right to rectification: You have the right to request that I correct any inaccurate or incomplete personal data.
  • The right to erasure (Right to be forgotten): You have the right to request the deletion or removal of your personal data where there is no compelling reason for its continued processing.
  • The right to restrict processing: You have the right to block or suppress the processing of your personal data.
  • The right to data portability: You have the right to obtain and reuse your personal data for your own purposes across different services.
  • The right to object: You have the right to object to the processing of your personal data in certain circumstances (e.g., for direct marketing).
  • Rights in relation to automated decision making and profiling: You have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning you or similarly significantly affects you.

If you wish to exercise any of the rights set out above, please contact me.

8. International Transfers

Whenever I transfer your personal data out of the UK or the EEA, I ensure a similar degree of protection is afforded to it by ensuring at least one of the following safeguards is implemented: I will only transfer your personal data to countries that have been deemed to provide an adequate level of protection for personal data; or where I use certain service providers, I may use specific contracts approved for use in the UK which give personal data the same protection it has in the UK.

9. Contact Details

If you have any questions about this privacy policy or my privacy practices, or if you wish to exercise your legal rights, please contact me at:

Email: [email protected]

You have the right to make a complaint at any time to the Information Commissioner's Office (ICO), the UK supervisory authority for data protection issues (www.ico.org.uk). I would, however, appreciate the chance to deal with your concerns before you approach the ICO so please contact me in the first instance.