GDPR Compliance Policy

1. Introduction

Mealflavordaily (“we”, “our”, “us”) is committed to protecting the privacy and personal data of all individuals who interact with our website (https://mealflavordaily.com). This GDPR Compliance Policy explains how we collect, use, store, and secure your personal data, and how you can exercise your rights under the General Data Protection Regulation (EU) 2016/679.

2. Types of Personal Data We Collect

• Email Addresses: When you subscribe to our newsletter, request a recipe, or contact us, we store your email address to provide the requested service and send you relevant updates.
• Cookies and Similar Technologies: We place cookies on your browser to remember your preferences, track usage patterns, and personalize your experience. Some cookies are strictly necessary, while others are used for analytics.
• Web Analytics: We use Google Analytics and Matomo to collect data such as page views, session duration, and referral sources. This information is aggregated and anonymized where possible.

3. Legal Basis for Processing

We process your personal data based on two primary legal bases:

• Consent: By providing your email address or clicking the cookie consent banner, you explicitly agree to the processing of your data for the purposes described.
• Legitimate Interest: We process data that is necessary to operate our website, improve user experience, and comply with legal obligations. This includes monitoring site performance and ensuring the security of our services.

4. Data Protection Measures

To safeguard your personal data, we employ a range of technical and organizational safeguards:

• SSL/TLS Encryption: All data transmitted between your browser and our servers is encrypted using industry‑standard SSL/TLS protocols.
• Secure Servers: Our hosting infrastructure is located in data centers that comply with ISO/IEC 27001 and GDPR data‑processing standards.
• Access Controls: Only authorized staff with a legitimate need can access personal data. Access is logged and monitored.
• Retention Limits: Personal data is retained only as long as necessary to fulfill the purposes for which it was collected or as required by law. For instance, email addresses are deleted if you unsubscribe and no further communication is requested.

5. Your GDPR Rights

Under the GDPR, you have the following rights regarding your personal data. Each right is illustrated with a Bootstrap 5 icon for quick reference.

• Right to Access: You can request a copy of the personal data we hold about you, including the purposes of processing and the categories of data.
• Right to Rectification: If any of your personal data is inaccurate or incomplete, you may ask us to correct it.
• Right to Erasure (Right to be Forgotten): You can request the deletion of your personal data where no legal obligation requires us to retain it.
• Right to Restrict Processing: You may ask us to limit the use of your personal data, for example, if you contest its accuracy or if the processing is unlawful.
• Right to Data Portability: You can obtain your personal data in a structured, commonly used format and transfer it to another controller.
• Right to Object: You may object to processing based on legitimate interests, direct marketing, or profiling.
• Right to Withdraw Consent: If you gave consent to process your data, you can withdraw it at any time. This will not affect the lawfulness of any processing performed before withdrawal.

6. How to Exercise Your Rights

To exercise any of the rights described above, please contact us at [email protected] with a brief description of your request. When contacting us, you may provide the following to help us verify your identity and process your request efficiently:

• Your full name and email address used on our site.
• Any additional identifiers you used during your interaction with us.
• A statement of the specific request (e.g., “I wish to delete all personal data related to my email address”).

We will acknowledge your request within 5 business days and respond within 30 days, as required by GDPR. If you believe your request has not been handled within this timeframe, you may lodge a complaint with the relevant supervisory authority or seek legal recourse.

7. Retention and Deletion of Personal Data

We retain personal data only for as long as necessary to achieve the purposes for which it was collected, including any statutory or regulatory obligations. Typical retention periods are as follows:

• Email Addresses: Retained for the duration of the subscription or until the user unsubscribes.
• Cookies: Session cookies are deleted when the browser is closed. Persistent cookies are deleted after 12 months unless the user opts out.
• Analytics Data: Anonymized analytics data is stored for a maximum of 12 months.

8. Contact Information

If you have any questions, concerns, or wish to exercise your GDPR rights, please contact our Data Protection Officer at:

Mealflavordaily
Email: [email protected]