Madurai is committed to protecting personal data and complies with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.
1. Data Controller
Madurai, 142a St Vincent Street, Glasgow G2 5LQ, is the data controller for information collected directly through its website, booking system and contact forms.
2. Personal Data Collected
Madurai collects and processes the following categories of information:
a. Booking information
Name, email address, phone number, booking details, dietary notes and any customer messages submitted via the online booking system. The booking partner acts as a processor on behalf of Madurai.
b. Newsletter sign-ups
Name and email address provided through the email subscription form.
c. Contact form enquiries
Name, email address, and the content of the message.
d. Technical and usage data
IP address, browser type, device identifiers, website usage behaviour and referral sources collected through analytics and marketing tracking tools.
e. Voucher purchases
Vouchers are sold through an external partner site. Any payment information is handled directly by that partner. Madurai receives only the information required to validate and redeem the voucher.
Madurai does not collect or store payment card details on its own website.
3. Purpose of Processing
Personal data is used for the following purposes:
• managing table bookings and confirming customer reservations
• responding to enquiries submitted through the contact form
• sending marketing emails to individuals who have opted in
• redeeming gift vouchers issued through the partner site
• analysing website performance, traffic and customer behaviour
• measuring digital advertising performance across Facebook, TikTok and Google
• maintaining website security and preventing misuse
4. Legal Basis for Processing
Madurai processes data based on the following grounds:
• Contract: managing bookings and voucher redemptions
• Consent: newsletter sign-ups and analytics cookies
• Legitimate interests: website operation, security and essential communication
• Legal obligation: maintaining records required by HMRC and regulatory bodies
5. Data Sharing
Madurai may share data with the following categories of recipients:
• booking system provider (data processor)
• email newsletter platform
• external voucher platform
• website analytics and advertising partners (Facebook, Google and TikTok)
• website hosting provider
• payment processors used by the voucher partner site
All partners process data under contract and are required to safeguard personal information.
6. International Transfers
Some partners may store or process data outside the UK. Transfers are made only where an adequacy decision applies or where appropriate safeguards, such as Standard Contractual Clauses, are in place.
7. Data Retention
Booking and enquiry information is retained for as long as necessary to manage the customer relationship and comply with legal obligations. Newsletter data is retained until the subscriber unsubscribes. Analytics data is held in line with the retention settings of each provider.
8. Rights of Individuals
Individuals have the right to:
• access their personal data
• request correction or deletion
• object to certain types of processing
• withdraw consent for marketing at any time
• lodge a complaint with the Information Commissioner’s Office (ICO)
Requests can be made by contacting the restaurant directly.
9. Contact
For privacy-related queries, contact: info@madurai.co.uk