Legal Notice

Legal Notice

This legal notice applies to the website available at https://maymanamarket.co.uk (the “Website”). Access to and use of the Website implies full acceptance, without limitation or qualification, of the terms set out below.

Hosting and Technical Service Provider

The Website is hosted and delivered, at least in part, through the infrastructure and services of:

Cloudflare, Inc., 101 Townsend Street, San Francisco, CA 94107, USA.

Cloudflare provides content delivery, security, and related technical services. Cloudflare does not control or publish the content of the Website and cannot be held responsible for it.

Access and Use of the Website

Users agree to use the Website in a lawful, diligent, and reasonable manner and to refrain from any action that could damage, disable, overburden, or impair the Website or interfere with any other party’s use of the Website.

Without limitation, users must not: attempt to gain unauthorized access to any portion of the Website, its systems, or networks; introduce viruses, malware, or other harmful code; circumvent security measures; or use automated systems to extract data (including scraping, mining, or similar data-gathering or extraction methods) except where such tools are expressly permitted by applicable law and do not contradict these terms.

The Website may be updated, suspended, or discontinued at any time without notice. No guarantee is given that the Website will be available without interruption or error.

Intellectual Property

The Website and all content that it contains or makes available (including texts, images, graphics, logos, product names, design elements, videos, audio, software, databases, and code) are protected by intellectual property laws and are owned by or licensed to the Website operator or its partners.

All trademarks and logos appearing on the Website are the property of their respective owners. The “Maymana” name and associated signs are protected by applicable intellectual property laws.

Users are granted a limited, non-exclusive, revocable license to access and use the Website for personal, non-commercial purposes. Any reproduction, representation, adaptation, modification, distribution, transmission, or public communication of all or part of the Website or its content, by any means and on any medium, without prior written authorization from the rights holder, is strictly prohibited.

Hyperlinks

The Website may contain links to third-party websites or services. These are provided solely for convenience. No approval or endorsement of such third-party content is expressed or implied. The Website operator has no control over and assumes no responsibility for the content, security, or practices of third-party sites.

Creating links to the Website is permitted provided that such links do not misrepresent, disparage, or otherwise harm the Website or its reputation, and do not imply any affiliation, approval, or endorsement where none exists. Deep-linking, framing, or similar practices may require prior authorization.

Liability and Warranties

The Website and its content are provided “as is” and “as available,” without warranties of any kind, whether express or implied, including, without limitation, warranties of accuracy, completeness, fitness for a particular purpose, or non-infringement.

While reasonable efforts are made to ensure that the information on the Website is accurate and up to date, errors, omissions, and technical issues may occur. The Website operator does not warrant that the Website will be secure, free from bugs or viruses, or free from interruptions.

To the fullest extent permitted by law, the Website operator shall not be liable for any indirect, consequential, special, incidental, or punitive damages, or for any loss of profit, revenue, data, goodwill, or business interruption arising out of or in connection with the use of, or inability to use, the Website. Nothing in this section excludes or limits liability that cannot be excluded or limited under applicable law.

Personal Data Protection

Processing of personal data on the Website complies with the UK General Data Protection Regulation (UK GDPR), the Data Protection Act 2018, and the Privacy and Electronic Communications Regulations (PECR).

Data Controller

The data controller is the operator of the Website “Maymana”.

Categories of Data Processed

  • Identification and account data (e.g., name, username, password) if you create an account.
  • Contact details and correspondence (e.g., messages sent via Website forms or customer service channels).
  • Order and transaction data (e.g., products purchased, delivery details, invoice data); payment details are generally processed by secure payment providers and are not stored by the Website beyond what is strictly necessary for payment and fraud prevention.
  • Technical and browsing data (e.g., IP address, device and browser information, logs, cookies and similar technologies, pages viewed, actions taken, approximate location derived from IP).
  • Marketing preferences and consent choices.

Purposes and Legal Bases

  • Provide and operate the Website, enable account features, and process orders and customer service requests (performance of a contract and/or steps taken at the user’s request).
  • Manage payments, deliveries, returns, and after-sales service (performance of a contract and legitimate interests).
  • Prevent and detect fraud, security incidents, and misuse (legitimate interests and legal obligations).
  • Improve the Website, products, and services, including analytics and audience measurement (legitimate interests; where required by PECR, subject to consent for non-essential cookies).
  • Send marketing communications and personalized offers (consent where required; or legitimate interests, with the ability to opt out at any time).
  • Comply with legal and regulatory obligations (legal obligation).

Recipients and Sharing

Personal data may be shared with authorized personnel and service providers acting on instructions (e.g., hosting, content delivery and security, payment processing, logistics, customer support, analytics, marketing tools), strictly for the purposes described and subject to appropriate confidentiality and security obligations. Data may also be shared when required by law or to protect rights, safety, or property.

International Transfers

Some recipients (for example, technical service providers such as Cloudflare) may be located outside the UK. In such cases, appropriate safeguards are implemented, such as standard contractual clauses approved under the UK GDPR and supplementary measures where necessary, or reliance on other lawful transfer mechanisms. Copies of the relevant safeguards can be made available upon justified request.

Retention Periods

  • Account data: retained for the duration of the account’s active use, then archived or deleted within a reasonable time after inactivity or closure.
  • Order and billing data: retained for the duration necessary to manage the transaction and then archived to meet legal obligations (generally up to 6 years after the end of the relevant financial year).
  • Customer support correspondence: retained for the time needed to handle the request and follow-up (generally up to 3 years depending on context).
  • Marketing data and preferences: retained until you withdraw consent or object, and in any event for no longer than necessary.
  • Cookies and similar technologies: session cookies last for the session; persistent cookies generally last from 6 to 24 months unless you delete them earlier or your settings shorten this.
  • Security and logs: retained for a period appropriate to ensure security and traceability (generally up to 13 months unless a longer period is justified by an incident or legal requirement).

Your Rights

Subject to conditions and exceptions under the UK GDPR, you have the right to request access, rectification, erasure, and portability of your personal data, and to request restriction of processing or object to processing. Where processing is based on consent, you can withdraw your consent at any time without affecting the lawfulness of processing prior to withdrawal. You may also define instructions regarding the fate of your data after death where applicable.

You can exercise your rights by contacting the Website operator through the contact means made available on the Website. For identity verification and security, additional information may be requested. You also have the right to lodge a complaint with the Information Commissioner’s Office (ICO), Wycliffe House, Water Lane, Wilmslow, Cheshire, SK9 5AF, telephone 0303 123 1113.

Security

Appropriate technical and organizational measures are implemented to protect personal data against unauthorized access, alteration, disclosure, or destruction. Nevertheless, no method of transmission over the Internet or method of electronic storage is completely secure, and absolute security cannot be guaranteed.

Cookies and Similar Technologies

The Website uses cookies and similar technologies (collectively, “cookies”) to operate, secure, and measure the audience of the Website, and to personalize content and offers where applicable. Some cookies are strictly necessary for the Website to function and are set without consent. Non-essential cookies (such as certain analytics or advertising cookies) are used only with your consent where required by PECR.

Types of Cookies Used

  • Strictly necessary cookies: essential for core functions such as navigation, session management, security, or shopping basket functionality. These cannot be disabled from within the Website’s systems.
  • Performance and analytics cookies: help measure and improve performance, understand usage, and detect issues.
  • Functionality cookies: remember choices and preferences to enhance your experience.
  • Advertising and personalization cookies: deliver relevant content or offers and limit repetition; may be set by the Website or by trusted partners.

Managing Cookies

When you first visit, a consent mechanism may be presented to manage non-essential cookies. You can change your preferences at any time by using the consent settings available on the Website (if provided) or by configuring your browser or device settings to block or delete cookies. Blocking some cookies may affect the availability of certain features.

Cookie lifespans vary: session cookies expire when you close your browser; persistent cookies generally last from 6 to 24 months unless you delete them earlier. Third-party cookies are subject to the policies of the third parties that set them.

Changes to These Legal Notices

These legal notices may be updated to reflect changes in law or in the Website’s operations. Your continued use of the Website after changes are posted signifies acceptance of the updated terms. The version below indicates the last update date.

Last updated: 22 December 2025.

Applicable Law and Jurisdiction

These legal notices and any dispute arising out of or in connection with the use of the Website are governed by the laws of England and Wales. The courts of England and Wales shall have exclusive jurisdiction, subject to any mandatory provisions of applicable consumer protection law that grant you additional rights.

About The Editorial Team Terms of Service Legal Notice Privacy Policy Sitemap Contact
© 2025 Maymana