+44 7874 268576

Legal

Privacy Policy.

Last updated: April 2026

At God Save The Chef we take your privacy seriously. This notice explains what personal data we collect, how we use it, and your rights under the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

01 Who is the data controller?

The data controller for godsavethechef.co.uk is:

Andrés Ribera
Trading as God Save The Chef
London, United Kingdom
hello@godsavethechef.co.uk
+44 7874 268576

If you have any questions about how your data is used, please contact us at the email address above.

02 What personal data do we collect?

We may collect the following categories of personal data:

  • Identity data — your name, as provided in enquiry forms or email correspondence.
  • Contact data — your email address and telephone number.
  • Event data — details of your event (date, number of guests, dietary requirements, location, cuisine preferences) that you share when requesting a quote or making a booking.
  • Financial data — invoicing information such as billing name and address. We do not store payment card details.
  • Usage data — technical information about how you interact with our website (IP address, browser type, pages visited, referring URL), collected via cookies and analytics tools.

We do not knowingly collect personal data from individuals under the age of 16.

03 How do we use your data?

We use your personal data for the following purposes, and rely on the lawful bases noted:

  • To respond to enquiries and provide quotes — lawful basis: legitimate interests (responding to a request you initiated).
  • To fulfil a booking — lawful basis: performance of a contract.
  • To send invoices and manage payment — lawful basis: performance of a contract and legal obligation.
  • To communicate service updates — lawful basis: legitimate interests.
  • To improve our website and user experience — lawful basis: legitimate interests (using aggregated, anonymised analytics data).
  • To comply with legal obligations — such as keeping financial records for tax purposes.

We will never sell your personal data to third parties, nor use it for automated decision-making or profiling.

04 Who do we share your data with?

We share your data only where necessary, with the following categories of recipient:

  • Hosting & infrastructure providers — our website is hosted by GoDaddy (UK/EU data processing agreements in place).
  • Email & communication tools — we use standard email services to manage correspondence.
  • Accounting & invoicing software — to issue and track invoices.
  • Analytics providers — anonymised usage data may be processed by tools such as Google Analytics to help us understand website performance.

All third-party processors are required to process your data securely and only for the purposes we instruct. We do not transfer your data outside the UK or EEA without appropriate safeguards in place.

05 How long do we keep your data?

We retain personal data only for as long as necessary for the purposes described in this notice:

  • Enquiries that do not lead to a booking — deleted or anonymised within 12 months of last contact.
  • Booking and client records — retained for 6 years from the date of the event to comply with HMRC record-keeping requirements.
  • Financial and invoicing records — retained for 6 years from the end of the relevant tax year, as required by UK law.
  • Website analytics data — retained in anonymised, aggregated form; individual session data retained in accordance with our analytics provider's settings (typically 26 months).

Once retention periods expire, data is securely deleted or anonymised.

06 Your rights

Under UK GDPR you have the following rights in relation to your personal data:

  • Right of access — to request a copy of the personal data we hold about you.
  • Right to rectification — to ask us to correct inaccurate or incomplete data.
  • Right to erasure — to request deletion of your data where there is no lawful basis to continue processing it.
  • Right to restriction — to ask us to suspend processing of your data in certain circumstances.
  • Right to portability — to receive your data in a structured, machine-readable format where processing is based on consent or contract.
  • Right to object — to object to processing based on legitimate interests.
  • Right to withdraw consent — where we rely on consent, you may withdraw it at any time without affecting the lawfulness of prior processing.

To exercise any of these rights, please contact us at hello@godsavethechef.co.uk. We will respond within one calendar month.

You also have the right to lodge a complaint with the Information Commissioner's Office (ICO), the UK supervisory authority for data protection:
ico.org.uk  ·  0303 123 1113

07 Security

We take the security of your personal data seriously. We implement appropriate technical and organisational measures to protect against unauthorised access, accidental loss, destruction, or disclosure — including encrypted communications and secure, password-protected systems.

However, no transmission over the internet is entirely secure. While we do our best to protect your data, we cannot guarantee the security of information transmitted to our website.

In the event of a personal data breach likely to result in a risk to your rights and freedoms, we will notify the ICO within 72 hours and, where required, inform affected individuals without undue delay.

08 Changes to this notice

We may update this privacy notice from time to time to reflect changes in our practices or legal requirements. When we do, we will revise the “Last updated” date at the top of this page.

We encourage you to review this notice periodically. Continued use of our website after any changes constitutes acceptance of the updated notice.

For material changes that significantly affect how we process your data, we will take reasonable steps to notify you directly.