top of page

Privacy Policy
Introduction: Mish Mash Publications Ltd (“we," “us," or “our”) is committed to protecting the privacy of our website visitors and customers. This Privacy Policy explains how we collect, use, store, and share your personal information when you use our Wix-hosted website and services. It also explains your rights under the UK General Data Protection Regulation (UK GDPR) and other applicable laws. Mish Mash Publications Ltd acts as the “data controller” for the personal information collected via this website, meaning we determine the purposes and means of processing your data 
Our website is built on the Wix platform, and Wix.com operates as a "data processor” that processes data on our behalf to help run the site.

.By using our site, you agree to the collection and use of information in accordance with this policy.
Information We Collect: We may collect and process different types of information about you, including:
•    Information You Provide Directly: When you make a purchase or fill out forms on our site, you provide personal information such as your name, billing and shipping address, email address, phone number, and payment details. For example, when placing an order, you will provide contact information and payment information to complete the transaction. If you contact us with an inquiry or sign up for our newsletter, you may provide your email and other contact details.
•    Account and Subscription Info: If our site allows account creation or subscription management, we will collect login credentials (like username and password) and any preferences or settings related to your account or subscriptions.
•    Automatic Information (Cookies & Analytics): When you visit our website, we automatically receive certain information via cookies and similar tracking technologies. This can include your IP address, device type, browser type, browsing actions on our site (such as pages viewed, links clicked), and referral source. We use analytics tools (e.g., Google Analytics) to gather usage data about how visitors interact with our site, which helps us improve our services. These tools may record information such as your geolocation (approximate), time spent on pages, and how you navigated through the site. We also use cookies to remember your preferences (such as items in your cart) and to enable certain features of the site. For more details, see Cookies and Tracking below.
•    Third-Party Data: If you interact with features on our site that are powered by third-party services (for example, a social media share plugin or a Wix App market feature), those services may send us certain information about you. For instance, if we enable product reviews via a third-party app, we might receive the information you submit in a review. We will ensure that any third-party apps on our site are GDPR-compliant and uphold data protection standards. 
We do not purchase third-party marketing lists, but if in the future we were to obtain supplemental data about you from other sources (for example, updated address information from a shipper), we would treat that in accordance with this policy.
How We Use Your Information: We use personal information for the following purposes:
•    To Fulfill Orders and Provide Services: The primary use of your data is to process your purchases and provide you with the products you’ve ordered. This includes using your information to manage payments, handle shipping (we share your address with our delivery partners), send order confirmations and updates, and provide customer support. For example, we will use your name and address to mail your coffee order and your email to send you an order receipt and tracking information. We also use your data to manage any subscriptions (e.g., scheduling recurring orders and payments). Using your data in this way is necessary for the performance of the contract (your order) between you and us.
•    Communication: We may use your contact information to communicate with you about your orders or respond to your enquiries. If you reach out with questions, we will use your email or phone number to reply. We may also send important service emails related to your account or transactions (for example, notifications of changes to this policy or terms, or notices about product availability or recalls). These service communications are not promotional in nature.
•    Marketing (with Consent): If you explicitly subscribe to our newsletter or opt-in to receive marketing communications, we will use your email address to send you our latest news, product updates, offers, or recipes and content we think you might enjoy. You can unsubscribe from marketing emails at any time by clicking the “unsubscribe” link in the footer of our emails or by contacting us. We will only send you marketing communications if you have given consent, or if you are an existing customer, we may send limited product updates under the “soft opt-in” rules (applicable under the Privacy and Electronic Communications Regulations); in any case, you will always have the opportunity to opt out. We do not share your contact information with third-party companies for their own marketing.
•    Analytics and Improvement: We use data (mostly aggregated or pseudonymized) to understand how our website is used. For instance, we analyse what pages are most visited or how users navigate the site, so we can improve layout and content. Our legitimate interest in providing a better website experience is the lawful basis for this processing. We might use Google Analytics, which uses cookies to track visitor interactions; however, we do not identify you personally in these analytics reports. You can opt out of Google Analytics by using a browser add-on or disabling cookies (see Cookies and Tracking below).
•    Fraud Prevention and Security: We may process personal data to protect our website and business from fraud, money laundering, or other illegal activities. For example, we might use an IP address and payment information to detect potentially fraudulent transactions. This processing helps ensure the security of our transactions and is in our legitimate interests as well as in consumers’ interests.
•    Legal Obligations: In certain cases, we need to use your information to comply with legal requirements. For example, we retain transaction records for accounting/tax purposes as required by law, and we may use and disclose personal data as necessary to respond to lawful requests by public authorities or to meet national security or law enforcement requirements.
Cookies and Tracking Technologies: Our website uses cookies and similar technologies to function effectively and to enhance your experience. Cookies are small data files stored on your browser or device. We use the following types of cookies:
•    Essential Cookies: These are necessary for the operation of our site. For example, they allow you to add products to your cart and checkout, or to log in to your account. Without these cookies, our website would not function properly.
•    Analytics/Performance Cookies: These cookies collect information about how visitors use our site (e.g., which pages are visited most often, if any error messages occur). We use this information to improve our website over time. For instance, we use Google Analytics which places a cookie to collect anonymous traffic data. You can opt-out of Google Analytics tracking with a browser plugin if you prefer.
•    Functional Cookies: These remember choices you make (such as your preferred currency or region, or items you left in your cart) to provide a more personalized experience.
•    Advertising/Marketing Cookies: Currently, we do not use any third-party advertising cookies on our site. (If this changes, we will update our policy and obtain any necessary consents.)
When you first visit our site, you will see a cookie notice or banner (if applicable) that allows you to consent to or manage non-essential cookies. You can always adjust your cookie settings via that banner or through your browser settings. Note that blocking certain cookies (especially essential ones) may impact your ability to use certain features of the site (like placing orders). By continuing to use our site with cookies enabled, you are agreeing to our use of cookies as described here. For more detailed information, please see our Cookie Policy (if provided) or contact us.
Disclosure of Your Information (Third-Party Sharing) We treat your personal information with care and confidentiality. We do not sell your personal data to third parties. However, we do share data with certain third parties in order to run our business and provide services to you, under strict controls:
•    Wix.com: Our website is hosted on Wix, which means Wix’s platform and servers process data (including storing it in databases, facilitating payments, etc.) on our behalf. Wix acts as a data processor and is contractually bound to protect personal data and only process it according to our instructions.
See Wix’s Privacy Policy and Data Processing Agreement for more on how they handle customer data.
•    Payment Processors: We use secure third-party payment gateways to process payments (for example, Wix Payments or PayPal). When you enter payment details, that information is transmitted directly to the payment processor and is not fully stored on our systems (we may keep a token or partial info for record-keeping). These processors are PCI-DSS compliant and authorised to handle your payment information. They may have their own privacy policies, which you can refer to (e.g., PayPal’s Privacy Policy, etc.).
•    Shipping and Fulfilment Partners: In order to deliver your orders, we share your shipping name and address (and if necessary, phone/email for delivery updates) with the postal or courier service (for example, Royal Mail, DPD, etc.) that delivers your package. They will use this information only for delivery purposes.
•    Email Service Provider: If we send newsletters or transactional emails, we might use an email service platform (for instance, Wix’s ShoutOut, MailChimp, or similar) to manage our mailing lists. In doing so, your email and name may be stored on that platform. We ensure any such provider is reputable and compliant with data protection laws. Every marketing email will contain an unsubscribe option.
•    Analytics and Site Tools: We have enabled Google Analytics on our site; Google may process certain usage data as described above. Google’s role is as a data processor for us, and they are prohibited from using the data for other purposes. We have configured Google Analytics to anonymize IP addresses where applicable. Additionally, if we use any other third-party tools (like a live chat widget, or a product review plugin), those services might process data such as what you input into a chat or review form. We will only use trusted third-party apps and will disclose in this policy if any app significantly deviates in how, it handles personal data. Per GDPR, we as site owners are responsible for ensuring third-party apps on our site comply with privacy law
.
•    Legal or Business Transfers: We may disclose information if required by law (for example, responding to a court order or government request) or to enforce our terms and protect our rights. In the unlikely event that our business is involved in a merger, acquisition, or sale of assets, personal data might be transferred to the successor or purchaser as part of that transaction, under the same privacy commitments.
•    Amazon (Digital Product): Our cookbook is sold via Amazon’s platform. If you follow a link from our site to purchase the digital cookbook on Amazon, you will be providing information directly to Amazon. We do not collect or receive your personal data from those Amazon transactions (except possibly aggregate sales information). Any data you provide to Amazon is governed by Amazon’s privacy policy, not ours. (See Digital Product Policy for more details.)
We require all third parties with whom we share data to respect the security of personal information and to treat it in accordance with the law. We only share the minimum information necessary for them to perform their specific services.
Data Storage and International Transfers: Your information is primarily stored in digital form on secure servers. As our site is hosted by Wix, your data may be stored on Wix’s servers, which could be located outside the UK. Wix’s main offices are in Israel (a country which the UK and EU recognise as providing an adequate level of data protection), and Wix may also utilise servers in the United States or other countries. Whenever personal data is transferred outside of the UK/European Economic Area, Wix and our service providers will ensure appropriate safeguards are in place to protect it, such as Standard Contractual Clauses or other legally recognised mechanisms.
We also store certain records in our own systems (for example, order records in our local accounting software); these are protected by access controls and encryption where applicable. Physical copies of data (e.g., printed invoices) are stored securely at our business premises. We retain personal data only as long as necessary for the purposes described: for example, order information is retained for at least 6 years to comply with UK tax law and for possible warranty/return issues; newsletter subscription data is kept until you unsubscribe; analytics data is typically retained in aggregate form for a few years. When we no longer need your personal data, we will securely erase or anonymize it.
Your Rights Under GDPR: As an individual in the UK (or EU), you have various rights regarding your personal data that we respect and uphold:
•    Right to Access: You have the right to request a copy of the personal data we hold about you, and to obtain information about how we process it. This is commonly known as a “Subject Access Request.” We will provide a copy of your data in a commonly used electronic format, unless you request otherwise.
•    Right to Rectification: If any personal information we hold about you is inaccurate or incomplete, you have the right to have it corrected. You can also update certain information by logging into your account (if you have one) and editing your profile or addresses.
•    Right to Erasure: You have the right to request that we delete your personal data (“the right to be forgotten”), for example if it is no longer necessary for us to hold it or if you withdraw consent (in cases where consent is the legal basis). Please note this right is not absolute – we may need to retain certain information for legal reasons (e.g., we cannot delete transactional data that we must keep for tax records, or we may retain your email to honor an unsubscribe request). But we will comply with deletion requests to the fullest extent permitted by law.
•    Right to Restrict Processing: You can ask us to suspend or limit the processing of your data in certain circumstances – for example, if you contest the accuracy of the data or have objected to processing (pending our review).
•    Right to Data Portability: For data that you have provided to us and which we process by automated means based on your consent or for performance of a contract, you have the right to request that we provide that data to you (or to another service provider) in a structured, commonly used, machine-readable format. In plain terms, you can ask for an exported file of the basic personal data you have given us so you can reuse it elsewhere.
•    Right to Object: You have the right to object to our processing of your personal data when we are relying on a legitimate interest (or that of a third party) and you have grounds to believe your rights and interests outweigh ours. You also have an absolute right to object to your personal data being used for direct marketing purposes. If you object, we will consider whether we have any compelling legitimate grounds to continue processing (which we will explain to you), or we will cease the processing in question.
•    Right not to be subject to Automated Decision-Making: We do not use your personal data to make any automated decisions that produce legal or similarly significant effects on you (no profiling, credit decisions, etc., without human involvement). If that ever changes, you will have the right to object or get an explanation, as appropriate.
To exercise any of these rights, please contact us using the contact details provided below. We may need to verify your identity before fulfilling certain requests to ensure we do not disclose data to the wrong person. We will respond to your request within one month or inform you if we need more time (up to an additional two months for complex requests).
Data Security: We employ a variety of technical and organizational measures to safeguard your personal information. This includes using HTTPS encryption (SSL/TLS) on our website to ensure data is transmitted securely from your browser to our site (look for the padlock in your browser address bar). Wix, as our host, maintains security certifications and protocols to protect stored data. Internally, access to personal data is limited to authorized personnel who need it to perform their duties (for example, our staff responsible for processing orders or handling customer inquiries). We ensure that our computers and devices are protected with up-to-date security software. However, please note that no method of transmission over the Internet or electronic storage is 100% secure, so while we strive to protect your data, we cannot guarantee absolute security. In the unlikely event of a data breach that poses a high risk to your rights (for instance, a leak of personal data), we will inform both you and the relevant authorities (such as the ICO) as required by law.
Third-Party Websites: Our website may contain links to external websites or services, such as our social media pages or the Amazon listing for our digital cookbook. If you follow a link to any external site, please be aware that those websites have their own privacy policies, and we do not accept responsibility or liability for their content or practices. For example, if you click a link to Amazon.com or Amazon.co.uk to purchase our digital cookbook, you will be subject to Amazon’s terms and privacy policy for that transaction. We recommend that you review the privacy policies of any third-party sites you visit. This Privacy Policy applies solely to personal data collected by Mish Mash Publications Ltd through our own website.
Children’s Privacy: Our website and offerings are not directed to children under 16. We do not knowingly collect personal information from children. If you are under 16, please do not provide any information on this site without parental consent. If we learn that we have inadvertently collected personal data from a child under 16, we will delete it. Parents or guardians who believe we may have information about a child can contact us to request deletion.
Changes to This Policy: We may update this Privacy Policy from time to time to reflect changes in our practices or for other operational, legal, or regulatory reasons. If we make material changes, we will notify users by posting a prominent notice on our site or by emailing those with accounts or whose email we have (where required by law, we will seek your consent for certain changes). Please review this policy periodically to stay informed of how we are protecting your information. The “last updated” date at the bottom indicates when the latest changes were made. Your continued use of the site after any modifications signifies your acceptance of the updated policy.
Your Consent: By using our website, you consent to our collection and use of your personal information as described in this Privacy Policy (to the extent such consent is required under applicable law). In particular, we will specifically request your consent for cookies (apart from strictly necessary ones) and for sending you marketing communications. You have the right to withdraw any given consent at any time (for example, you can withdraw consent to marketing by unsubscribing, and you can adjust cookie preferences via your browser or our cookie banner).
Contact Us (Data Controller Contact): If you have questions, concerns, or requests regarding your privacy or this policy, you can contact us at:
Email: privacy@mishmashpublications.com (or use mishmashpublications@icloud.com – please indicate it’s a privacy query).
Postal Address: Mish Mash Publications Ltd, 128 City Road, London, EC1V 2NX, UK

We will do our best to address any issue. If you feel we have not adequately addressed your privacy concerns, you have the right to lodge a complaint with the UK Information Commissioner’s Office (ICO), the supervisory authority for data protection issues. You can find more information on the ICO’s website on how to report a concern. The ICO can investigate and act against misuse of personal data 

We would, however, appreciate the chance to deal with your concerns first, so please do reach out to us.

Last updated: March 28, 2025.
 

bottom of page