Last updated: 25th December 2025
This Privacy Policy for Mohammed S Ali ("we", "us", or "our") describes how and why we collect, store, use, and share ("process") your personal information when you use our services ("Services"), including when you:
Questions or concerns? Reading this Privacy Policy will help you understand your privacy rights and choices. We are the data controller responsible for your personal information. If you do not agree with our policies and practices, please do not use our Services. If you have any questions or concerns, please contact us at [email protected].
What personal information do we process? When you visit, use, or navigate our Services, we may process personal information depending on how you interact with us and the Services, the choices you make, and the products and features you use. This includes information you provide directly, data automatically collected, and AI interaction data from your use of our chatbot.
Do we process any sensitive personal information? We do not intentionally process sensitive personal information. However, you should not share sensitive religious, health, or personal information with our AI chatbot.
Do we collect any information from third parties? We do not collect any information from third parties.
How do we process your information? We process your information to provide, improve, and administer our Services (including AI chatbot functionality), communicate with you, for security and fraud prevention, to train and improve our AI models, and to comply with law. We may also process your information for other purposes with your consent.
Do we use AI and automated decision-making? Yes, our AI chatbot uses automated processing to generate responses. However, we do not use automated decision-making that produces legal effects or similarly significant effects on you.
When and with whom do we share personal information? We may share information with specific third-party service providers (including AI technology providers), hosting services, and analytics providers. We do not sell your personal information.
How do we keep your information safe? We have appropriate technical and organisational security measures in place to protect your personal information. However, no electronic transmission over the internet can be guaranteed to be 100% secure.
What are your rights? Under UK data protection law (UK GDPR and Data Protection Act 2018), you have certain rights regarding your personal information, including the right to access, rectify, erase, restrict processing, object to processing, and data portability.
How do you exercise your rights? The easiest way to exercise your rights is by contacting us directly at [email protected]. We will consider and act upon any request in accordance with UK data protection laws.
In Short: We collect personal information that you provide to us, including information provided through our AI chatbot.
We collect personal information that you voluntarily provide to us when you register for an account, express an interest in obtaining information about us or our Services, when you participate in activities on the Services (such as using our AI chatbot or research tools), or otherwise when you contact us.
Personal Information Provided by You. The personal information that we collect depends on the context of your interactions with us and the Services. The personal information we collect may include:
AI Chatbot Interaction Data. When you use our AI chatbot, we collect:
Sensitive Information. We do not intentionally process sensitive personal information (also known as "special categories" of data under UK GDPR), including data revealing racial or ethnic origin, political opinions, religious or philosophical beliefs, trade union membership, genetic data, biometric data, health data, or data concerning sex life or sexual orientation. While our Services relate to Islamic content, we do not collect data about your religious beliefs unless you voluntarily provide such information through your interactions with our AI chatbot.
All personal information that you provide to us must be true, complete, and accurate, and you must notify us of any changes to such personal information.
In Short: Some information—such as your Internet Protocol (IP) address and/or browser and device characteristics—is collected automatically when you visit our Services.
We automatically collect certain information when you visit, use, or navigate the Services. This information does not reveal your specific identity (like your name or contact information) but may include device and usage information, such as:
This information is primarily needed to maintain the security and operation of our Services, for our internal analytics and reporting purposes, and to improve our AI chatbot functionality.
The information we automatically collect includes:
Log and Usage Data: Service-related, diagnostic, usage, and performance information our servers automatically collect when you access or use our Services. This may include your IP address, device information, browser type and settings, date/time stamps, pages viewed, searches, and other actions you take (such as features used, AI chatbot interactions, and research queries).
Device Data: Information about your computer, phone, tablet, or other device you use to access the Services, including IP address, device identification numbers, browser type, hardware model, Internet service provider, operating system, and system configuration information.
Location Data: Information about your device's location, which can be either precise or imprecise depending on your device settings. The amount of information we collect depends on the type and settings of the device you use. You can opt out by refusing access to the information or by disabling your Location setting on your device. However, this may affect certain features of our Services.
AI Performance Data: Technical data about how our AI chatbot performs, including response times, error rates, and system performance metrics. This helps us improve the quality and reliability of our AI services.
In Short: We process your information to provide, improve, and administer our Services, including our AI chatbot, to communicate with you, for security and fraud prevention, to train and enhance our AI models, and to comply with law.
We process your personal information for a variety of reasons, depending on how you interact with our Services, including:
Our AI chatbot uses artificial intelligence and natural language processing to understand your queries and generate responses. When you interact with our chatbot:
We take your privacy seriously when using data to improve our AI services:
Our AI chatbot may utilise third-party artificial intelligence technologies and services. When you use our chatbot:
Please be aware that AI-generated responses:
In Short: We only process your personal information when we have a valid legal basis to do so under UK data protection law.
The UK General Data Protection Regulation (UK GDPR) and Data Protection Act 2018 require us to explain the valid legal bases we rely on to process your personal information. As such, we may rely on the following legal bases to process different categories of your personal data:
| Processing Activity | Legal Basis |
|---|---|
| Account creation and management | Performance of a Contract / Consent |
| Operating AI chatbot and generating responses | Performance of a Contract / Legitimate Interests |
| Improving AI models and services | Legitimate Interests / Consent |
| Customer support and enquiry responses | Performance of a Contract / Legitimate Interests |
| Security and fraud prevention | Legitimate Interests / Legal Obligations |
| Analytics and service improvement | Legitimate Interests |
| Marketing communications | Consent |
| Legal compliance and regulatory requirements | Legal Obligations |
| Emergency situations | Vital Interests |
Consent: We may process your information if you have given us permission (consent) to use your personal information for a specific purpose. For example, we rely on consent when you opt in to receive marketing communications or agree to specific uses of your AI interaction data. You can withdraw your consent at any time by contacting us or using the unsubscribe mechanism in our communications.
Performance of a Contract: We process your personal information when we believe it is necessary to fulfil our contractual obligations to you, including providing our AI chatbot services, research tools, and other features as outlined in our Terms of Service, or when taking steps at your request prior to entering into a contract with you.
Legitimate Interests: We may process your information when we believe it is reasonably necessary to achieve our legitimate business interests and those interests do not outweigh your interests and fundamental rights and freedoms. Our legitimate interests include:
Legal Obligations: We may process your information where we believe it is necessary for compliance with our legal obligations, such as to cooperate with a law enforcement body or regulatory agency, comply with data protection laws, exercise or defend our legal rights, or disclose your information as evidence in litigation.
Vital Interests: We may process your information where we believe it is necessary to protect your vital interests or the vital interests of a third party, such as situations involving potential threats to the safety of any person.
In legal terms, we are generally the "data controller" under UK data protection laws since we determine the means and purposes of the data processing we perform. This means we are responsible for deciding how and why your personal information is processed.
In Short: We may share information in specific situations and with specific third-party service providers, but we do not sell your personal information.
We may share your data with third-party vendors, service providers, contractors, or agents ("third parties") who perform services for us or on our behalf and require access to such information to do that work. We have contracts in place with our third parties, which are designed to help safeguard your personal information. This means that they cannot do anything with your personal information unless we have instructed them to do it. They will also not share your personal information with any organisation apart from us. They also commit to protect the data they hold on our behalf and to retain it for the period we instruct.
The categories of third parties we may share personal information with include:
We specifically use the following third-party services that may process your data:
We may share or transfer your information in connection with, or during negotiations of, any merger, sale of company assets, financing, or acquisition of all or a portion of our business to another company. In such cases, we will ensure the acquiring party agrees to protect your personal information in accordance with this Privacy Policy.
We may disclose your information where we are legally required to do so in order to comply with applicable law, governmental requests, a judicial proceeding, court order, or legal process, such as in response to a court order or a subpoena (including in response to public authorities to meet national security or law enforcement requirements).
We may also disclose your information if we believe disclosure is necessary or appropriate to protect the rights, property, or safety of our company, our customers, or others. This includes exchanging information with other companies and organisations for fraud protection and credit risk reduction.
We may disclose your personal information for any other purpose with your consent.
We do not sell, rent, or trade your personal information to third parties for their marketing purposes.
In Short: Your information may be transferred to, and processed in, countries other than the United Kingdom.
Our servers and data centres are primarily located in the United Kingdom. However, some of our third-party service providers (including AI technology providers, cloud hosting services, and analytics providers) may be based outside the United Kingdom or may process data in multiple locations globally.
When we transfer your personal information outside the United Kingdom, we ensure appropriate safeguards are in place to protect your data in accordance with UK GDPR requirements. These safeguards may include:
If you would like to receive more information about the international transfers of your personal information, or if you would like to obtain a copy of the safeguards we have put in place, please contact us using the details provided in this Privacy Policy.
In Short: We are not responsible for the safety of any information that you share with third-party websites linked from our Services.
The Services may link to third-party websites, online services, or mobile applications and/or contain advertisements from third parties that are not affiliated with us and which may link to other websites, services, or applications. These may include:
We do not make any guarantee regarding any such third parties, and we will not be liable for any loss or damage caused by the use of such third-party websites, services, or applications. The inclusion of any link does not imply our endorsement of the linked site, service, or application.
We cannot guarantee the safety and privacy of data you provide to any third parties. Any data collected by third parties is not covered by this Privacy Policy. We are not responsible for the content or privacy and security practices and policies of any third parties, including other websites, services, or applications that may be linked to or from the Services. You should review the policies of such third parties and contact them directly to respond to your questions.
In Short: We may use cookies and other tracking technologies to collect and store your information.
We may use cookies and similar tracking technologies (like web beacons, pixels, and tags) to access or store information when you interact with our Services. Some online tracking technologies help us maintain the security of our Services and your account, prevent crashes, fix bugs, save your preferences, and assist with basic site functions.
We also permit third parties and service providers to use online tracking technologies on our Services for analytics and advertising, including to help manage and display advertisements, to tailor advertisements to your interests, and to measure the effectiveness of our Services.
| Cookie Type | Purpose | Duration |
|---|---|---|
| Essential Cookies | Necessary for the website to function, including maintaining your session when using the AI chatbot | Session / Persistent |
| Analytics Cookies | Help us understand how visitors use our Services, which features are popular, and how users interact with our AI chatbot | Up to 2 years |
| Functional Cookies | Remember your preferences and settings to provide a personalised experience | Up to 1 year |
| Performance Cookies | Collect information about how you use our Services to help us improve functionality and user experience | Up to 1 year |
We use Google Analytics to track and analyse the use of the Services. Google Analytics collects information such as how often users visit our Services, what pages they visit, and what other sites they used prior to coming to our Services. We use the information we get from Google Analytics to maintain and improve our Services and our products.
Google Analytics places cookies on your device and may collect information including IP addresses and device identifiers. Google's ability to use and share information collected by Google Analytics about your visits to our Services is restricted by the Google Analytics Terms of Service and the Google Privacy Policy.
To opt out of being tracked by Google Analytics across all websites, visit https://tools.google.com/dlpage/gaoptout.
You can control and manage cookies in various ways. Please be aware that removing or blocking cookies may impact your user experience and some functionality may not work as intended.
Most web browsers are set to accept cookies by default. If you prefer, you can usually choose to set your browser to remove cookies and to reject cookies. Methods for managing cookies vary by browser. Please visit your browser's help function to learn more about cookie management.
Browser Controls:
For more information about cookies and how to manage them, visit www.allaboutcookies.org.
In Short: We keep your information for as long as necessary to fulfil the purposes outlined in this Privacy Policy unless otherwise required by law.
We will only keep your personal information for as long as it is necessary for the purposes set out in this Privacy Policy, unless a longer retention period is required or permitted by law (such as tax, accounting, or other legal requirements).
| Data Type | Retention Period | Justification |
|---|---|---|
| Account Information | Duration of account + 30 days after deletion | To provide services and facilitate account recovery |
| AI Chatbot Interaction Logs | Up to 2 years | Service improvement, quality assurance, and AI training |
| Support Communications | Up to 3 years | Legal requirements and quality assurance |
| Analytics Data | Up to 2 years | Service improvement and understanding usage patterns |
| Marketing Consent Records | Until consent withdrawn + 3 years | Legal compliance and proof of consent |
| Security Logs | Up to 1 year | Security monitoring and incident investigation |
| Anonymised AI Training Data | Indefinitely | Cannot be linked back to individuals |
When we have no ongoing legitimate business need to process your personal information, we will either delete or anonymise such information, or, if this is not possible (for example, because your personal information has been stored in backup archives), then we will securely store your personal information and isolate it from any further processing until deletion is possible.
You have the right to request deletion of your personal information at any time (subject to certain legal exceptions). Upon receiving a valid deletion request, we will delete your personal information within 30 days, except where we are required to retain it by law or have a legitimate legal basis to retain it.
In Short: We aim to protect your personal information through a system of organisational and technical security measures.
We have implemented appropriate and reasonable technical and organisational security measures designed to protect the security of any personal information we process. These measures include:
However, despite our safeguards and efforts to secure your information, no electronic transmission over the Internet or information storage technology can be guaranteed to be 100% secure. We cannot promise or guarantee that hackers, cybercriminals, or other unauthorised third parties will not be able to defeat our security and improperly collect, access, steal, or modify your information.
Although we will do our best to protect your personal information, transmission of personal information to and from our Services is at your own risk. You should only access the Services within a secure environment and through secure networks.
In the event of a data breach that is likely to result in a risk to your rights and freedoms, we will notify you and the Information Commissioner's Office (ICO) within 72 hours of becoming aware of the breach, in accordance with UK GDPR requirements.
In Short: We do not knowingly collect data from or market to children under 18 years of age without parental consent.
Our Services are intended for users who are at least 18 years old. We do not knowingly collect, solicit data from, or market to children under 18 years of age without verified parental or guardian consent.
Minors under 18 may use our Services only with the involvement, supervision, and consent of a parent or legal guardian. If a minor uses our Services, we require that:
By allowing a minor to use the Services, you represent that you are the parent or guardian of such minor and consent to such minor's use of the Services and agree to be bound by this Privacy Policy on behalf of the minor.
If we learn that personal information from users less than 18 years of age has been collected without proper parental consent, we will deactivate the account and take reasonable measures to promptly delete such data from our records. If you become aware of any data we may have collected from children under age 18 without appropriate consent, please contact us at [email protected].
In Short: You have rights under UK data protection law that allow you greater access to and control over your personal information.
Under UK data protection law (UK GDPR and Data Protection Act 2018), you have certain rights regarding your personal information. These rights are not absolute and may be subject to certain conditions and exemptions.
1. Right of Access
You have the right to request access to your personal information (commonly known as a "data subject access request" or "SAR"). This enables you to receive a copy of the personal information we hold about you and to check that we are lawfully processing it.
2. Right to Rectification
You have the right to request correction or completion of the personal information we hold about you. This enables you to have any incomplete or inaccurate information we hold about you corrected.
3. Right to Erasure (Right to be Forgotten)
You have the right to request deletion or removal of your personal information where:
Note: This right is not absolute, and we may need to retain certain information for legal or legitimate business purposes.
4. Right to Restrict Processing
You have the right to request that we suspend the processing of your personal information in certain circumstances, such as when:
5. Right to Object
You have the right to object to our processing of your personal information where we are relying on legitimate interests and there is something about your particular situation which makes you want to object to processing on this ground. You also have the right to object to processing for direct marketing purposes.
6. Right to Data Portability
You have the right to request the transfer of your personal information to another party in a structured, commonly used, and machine-readable format where:
This includes your account information and AI chatbot interaction history.
7. Right to Withdraw Consent
Where we rely on your consent to process your personal information, you have the right to withdraw that consent at any time. This will not affect the lawfulness of processing based on consent before its withdrawal.
8. Right Not to be Subject to Automated Decision-Making
You have the right not to be subject to a decision based solely on automated processing (including profiling) which produces legal effects concerning you or similarly significantly affects you. See Section 13 for more details on our use of automated decision-making.
If you wish to exercise any of these rights, please contact us using the contact details provided in Section 15. We will respond to your request within one month, although this may be extended by up to two additional months where requests are complex or numerous.
To protect your privacy and security, we may need to verify your identity before processing your request. In some cases, we may request additional information to verify your identity.
You will not usually have to pay a fee to exercise your rights. However, we may charge a reasonable fee or refuse to comply with your request if it is clearly unfounded, repetitive, or excessive.
If you are located in the United Kingdom and you believe we are unlawfully processing your personal information, or if you are not satisfied with our response to any requests you have made regarding your personal information, you have the right to lodge a complaint with the Information Commissioner's Office (ICO).
Information Commissioner's Office
Wycliffe House
Water Lane
Wilmslow
Cheshire
SK9 5AF
United Kingdom
Telephone: 0303 123 1113
Website: https://ico.org.uk
Report a concern: https://ico.org.uk/make-a-complaint/
Opting Out of Marketing: You can unsubscribe from our marketing and promotional communications at any time by:
Once you opt out, you will be removed from marketing lists. However, we may still send you non-marketing communications necessary for the administration and use of your account, such as service updates, security alerts, and administrative messages.
Managing Cookies: Most web browsers are set to accept cookies by default. You can usually choose to set your browser to remove cookies and to reject cookies. If you choose to remove or reject cookies, this could affect certain features or services of our Services. For more information, see Section 8.
In Short: We use AI-powered automated processing to generate chatbot responses, but we do not use automated decision-making that produces legal or similarly significant effects.
Our Services use artificial intelligence and automated processing in the following ways:
AI Chatbot Responses: Our AI chatbot uses automated natural language processing to understand your queries and generate responses. This processing is automated but:
Analytics and Usage Analysis: We use automated tools to analyse how our Services are used and to identify trends. This analysis:
We do not use automated decision-making (including profiling) that:
Under UK GDPR, you have the right not to be subject to decisions based solely on automated processing where such decisions have legal or similarly significant effects. Since our automated processing does not produce such effects, this right typically does not apply to our Services. However:
We may use your anonymised AI interaction data to train and improve our models, but this:
In Short: Yes, we will update this policy as necessary to stay compliant with relevant laws and to reflect changes in our practices.
We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. The updated version will be indicated by an updated "Last updated" date at the top of this Privacy Policy.
If we make material changes to this Privacy Policy that significantly affect your rights or how we process your personal information, we may notify you by:
For non-material changes, we may simply update this Privacy Policy and adjust the "Last updated" date.
We encourage you to review this Privacy Policy periodically to stay informed about how we are protecting your information. Your continued use of our Services after changes are posted constitutes your acceptance of the updated Privacy Policy.
If you do not agree with any changes to this Privacy Policy, you should discontinue use of our Services and contact us to close your account or request deletion of your data.
If you have questions, comments, or requests regarding this Privacy Policy or our data practices, you may contact us at:
Data Controller:
Mohammed S Ali
Email: [email protected]
(For data protection enquiries, please use subject line: "Privacy/GDPR Request")
Post:
Mohammed S Ali
MATW P 77268
PO Box 6945
London, London W1A 6US
United Kingdom
Website: www.askthequran.com
As a UK-based sole trader, Mohammed S Ali is the data controller of your personal information. All enquiries regarding the processing of your personal information should be directed to the above contact details.
Response Times:
Under UK data protection law, you have the right to request access to the personal information we collect from you, request that we change, update, or delete it, and exercise other privacy rights described in this Privacy Policy.
1. Through Your Account (if applicable):
2. Contact Us Directly:
Email: [email protected]
Subject Line: "Data Access Request", "Data Update Request", or "Data Deletion Request"
Post:
Mohammed S Ali
MATW P 77268
PO Box 6945
London, London W1A 6US
United Kingdom
To help us process your request efficiently and securely, please include:
To protect your privacy and security, we may need to verify your identity before processing your request. We may ask you to provide:
We will respond to your request within one month of receipt. In some cases, particularly where requests are complex or numerous, we may need to extend this period by a further two months. We will inform you of any such extension within one month of receipt of your request, together with the reasons for the delay.
You can request access to or deletion of:
While we will honour your deletion requests wherever possible, we may need to retain certain information:
We will inform you if we cannot delete specific information and explain the reason.