GDPR

Effective Date: 29/09/2024

At Winsome Recipes (“we”, “us”, or “our”), we are committed to protecting the privacy and security of your personal data. As part of this commitment, we adhere to the General Data Protection Regulation (GDPR), which governs the collection, use, and storage of personal data for residents of the European Economic Area (EEA).

This GDPR compliance statement explains your rights under the GDPR and how we handle your personal information.

1. Data Controller

Winsome Recipes, accessible at www.winsomerecipes.com, is the data controller responsible for your personal data. If you have any questions or concerns about how your data is handled, you can contact us at:

Email: [email protected]

2. What Personal Data We Collect

We may collect the following types of personal data:

  • Contact Information: such as your name, email address, and any information you provide when subscribing to our newsletter or contacting us.
  • Usage Data: including information about how you use our website, such as IP addresses, browser types, and pages visited.
  • Cookies: small text files that help us understand how you interact with our website and provide a better user experience. You can manage cookies via your browser settings.

3. Why We Collect Your Data

We collect and process your personal data for the following reasons:

  • To provide and improve our website and services.
  • To send you newsletters, updates, and marketing communications (with your consent).
  • To respond to inquiries and offer customer support.
  • To comply with legal obligations, including data retention and processing regulations.

4. Legal Basis for Processing Data

Under the GDPR, we process your personal data based on the following legal grounds:

  • Consent: You have provided your explicit consent for us to process your data for specific purposes, such as receiving newsletters.
  • Contract: We process your data to fulfill our obligations under a contract or to take steps at your request before entering into a contract.
  • Legitimate Interest: We process your data based on our legitimate interest in improving our website and services, provided that it does not override your privacy rights.
  • Legal Obligation: We may need to process your data to comply with a legal requirement.

5. Your Rights Under GDPR

As a resident of the EEA, you have the following rights under GDPR:

  • Right to Access: You can request access to the personal data we hold about you and receive a copy.
  • Right to Rectification: You can request corrections to any inaccurate or incomplete personal data.
  • Right to Erasure (“Right to Be Forgotten”): You can request that we delete your personal data, subject to certain legal obligations.
  • Right to Restrict Processing: You can request that we limit the processing of your data in certain circumstances.
  • Right to Data Portability: You can request a copy of your personal data in a structured, commonly used format.
  • Right to Object: You can object to the processing of your personal data for marketing purposes or based on our legitimate interests.
  • Right to Withdraw Consent: You can withdraw your consent at any time if we are processing your personal data based on your consent.

To exercise these rights, please contact us at [email protected].

6. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes for which we collected it, including any legal, accounting, or reporting requirements. If you request the deletion of your data, we will remove it unless we are required by law to retain it.

7. Data Security

We take the security of your personal data seriously and implement appropriate technical and organizational measures to protect it. However, no method of transmission over the Internet or electronic storage is completely secure, and we cannot guarantee its absolute security.

8. International Data Transfers

Your personal data may be transferred to and processed in countries outside of the EEA. In such cases, we ensure that appropriate safeguards are in place, such as the use of Standard Contractual Clauses (SCCs) approved by the European Commission, to protect your data in accordance with GDPR.

9. Third-Party Processors

We may share your personal data with trusted third-party service providers who assist us in operating our website, conducting our business, or serving our users. These third-party processors are bound by confidentiality agreements and are only allowed to process your data in accordance with our instructions and GDPR requirements.

10. Changes to This GDPR Statement

We may update this GDPR Compliance Statement from time to time to reflect changes in our data practices or legal requirements. The updated statement will be posted on our website with a new effective date.

11. Contact Information

If you have any questions or concerns about this GDPR Compliance Statement or your rights, please contact us at:

Email: [email protected]