Privacy Policy
Introduction
Mother to Mother (“we”, “us”, “our”) respects your privacy and processes personal data in compliance with UK GDPR and the Data Protection Act 2018.
Who We Are
We are the data controller for personal information collected via our website (mtom.org.uk). If you have any questions, email office@mtom.org.uk or write to us at our registered address.
What Data We Collect
-
Personal identifiers: First name, last name, address, email address
-
Donation information: Payment details entered via secure payment processor (we do not store card details)
-
Volunteering or contact forms: As provided by you voluntarily
How We Use Your Data
We use your data to:
-
Process donations and issue receipts
-
Communicate updates, acknowledgements, newsletters (with your consent)
-
Fulfil legal obligations such as Gift Aid claims
-
Improve our services and maintain compliance under legitimate interest or contract terms
Data Sharing
-
Card payments are handled by a secure third-party processor; Mother to Mother does not receive or store full card numbers
-
Gift Aid claims may require sharing your name and address with HMRC or service providers.
-
We do not share personal data with unrelated third parties without your explicit consent, unless required by law.
Data Retention
Your data is retained only for as long as needed to fulfil the purpose (e.g., financial record keeping, regulatory requirements) or as mandated by law.
Your Rights
Under UK GDPR, you have rights to:
-
Access, correct, or erase your data
-
Restrict or object to processing
-
Withdraw consent at any time
-
Data portability for your provided information
-
Lodge a complaint with the ICO if unsatisfied with our handling
2. Cookie Policy
What Are Cookies?
Small files stored on your device to enhance your browsing experience and collect anonymized usage data.
Cookies We Use
-
Necessary cookies: Essential for website functionality (e.g., session management)
-
Analytical cookies: Track site usage to help improve our content (can be deactivated)
-
Consent management cookies
Managing Cookies
You can modify your cookie preferences via our cookie banner or browser settings. Disabling functional cookies may impair site features.
3. GDPR Compliance Summary
| Area | Description |
|---|---|
| Lawful Basis | Consent, contract (donations), legal obligation (Gift Aid), legitimate interest |
| Data Security | Use of encrypted payment gateways; third-party processors with compliance assessments |
| Transparency | Clear information on data collection and use throughout site contact points |
| Data Subject Rights | Access, rectification, erasure, restriction, portability, and right to complain |
| Data Retention | Only retained as necessary or required by law |
| Policy Updates | We review our policy periodically and notify users of significant changes |