1. Who we are (Data Controller)
Dar ul Isra is the data controller responsible for your personal data.
Website: https://darulisra.org.uk
Organisation: Dar ul-Isra
Contact: Via our website contact form
We are committed to protecting your personal data in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.
2. What data we collect
We may collect and process the following data:
- Identity Data: Name, username
- Contact Data: Email address
- Technical Data: IP address, browser type, device information
- Usage Data: How you interact with our website
- Comment Data: Any information submitted via comment forms
3. How we collect your data
We collect data when you:
- Leave comments
- Register or log in (if applicable)
- Use our contact forms
- Browse the website (via cookies and logs)
4. Lawful basis for processing (UK GDPR Article 6)
We process your data under the following lawful bases:
- Consent – e.g. cookie preferences, optional form submissions
- Legitimate Interests – website security, spam prevention, functionality
- Legal Obligation – where required for compliance
- Contract – where services are requested (if applicable)
5. How we use your data
We use your data to:
- Operate and maintain the website
- Respond to enquiries
- Prevent spam and abuse
- Improve user experience
- Ensure website security
6. Cookies
We use cookies to enhance functionality and user experience.
Cookie Table
| Cookie | Provider | Purpose | Duration |
|---|---|---|---|
| wordpress_* | WordPress | Maintains logged-in session | Session |
| wordpress_logged_in_* | WordPress | Identifies logged-in users | Session |
| wp-settings-* | WordPress | Stores dashboard preferences | 1 year |
| comment_author_* | WordPress | Remembers comment details | 1 year |
| PHPSESSID | PHP | Maintains session state | Session |
| stspc_cookie_consent | STSPC Ltd | Stores cookie preferences | 6 months |
Additional details:
- Comment cookies last 1 year
- Login cookies last 2 days (or 2 weeks if “Remember Me”)
- Temporary cookies are deleted when browser closes
You can manage or withdraw consent via your browser or cookie banner.
7. Comments
When visitors leave comments:
- We collect form data, IP address, and browser details
- This helps with spam detection
An anonymised hash of your email may be shared with Gravatar.
Privacy Policy: https://automattic.com/privacy/
8. Media
If you upload images:
- Avoid including EXIF GPS location data
- Visitors can extract location data from images
9. Embedded content
Content (e.g. videos, images) from third-party sites behaves as if you visited those sites directly.
These sites may:
- Collect data
- Use cookies
- Track interactions
10. Who we share your data with
We may share data with:
- Spam detection services (e.g. Akismet or similar)
- Hosting providers (for site operation)
If you request a password reset, your IP address is included in the email.
We do not sell your personal data.
11. International data transfers
Some third-party services (e.g. WordPress, Gravatar) may transfer data outside the UK.
Where this occurs, we ensure:
- Adequate safeguards are in place
- Transfers comply with UK GDPR requirements
12. How long we retain your data
- Comments: Indefinitely
- User accounts: Until deleted
- Technical logs: As required for security
13. Your data protection rights
Under UK GDPR, you have the right to:
- Access your data
- Rectify inaccurate data
- Erase your data (“right to be forgotten”)
- Restrict processing
- Object to processing
- Data portability
To exercise your rights, contact us via the website.
14. Complaints
You have the right to lodge a complaint with the:
Information Commissioner’s Office (ICO)
Website: https://ico.org.uk
15. Data security
We implement appropriate technical and organisational measures to protect your data, including:
- Secure hosting
- Access controls
- Monitoring for vulnerabilities
16. Changes to this policy
We may update this Privacy Policy from time to time.
Changes will be posted on this page.