GDPR Compliance for OChef Recipes
Last updated: 02/11/2024
At OChef Recipes, we are committed to protecting your personal data in compliance with the General Data Protection Regulation (GDPR) (EU) 2016/679. This GDPR Compliance Statement explains your rights under GDPR and how we collect, use, store, and protect your personal data when you use our services or visit our website, OchefRecipes.com.
If you have any questions about our GDPR compliance, you may contact us at [email protected].
1. Data Collection and Use
We collect only the personal data necessary to provide our services, including:
- Personal Information: This may include your name, email address, and other information you voluntarily provide when registering, subscribing, or contacting us.
- Usage Data: This includes your IP address, browser type, pages visited, and time spent on our website. We use this data for site analysis and improvement.
We use this information to:
- Provide and improve our services.
- Communicate with you, including sending newsletters and updates, if you have opted in.
- Comply with legal obligations and resolve disputes.
2. Legal Basis for Processing
Our legal basis for collecting and processing your personal data depends on the data and the specific purpose for which it was collected. We only collect and process your data when:
- You have given consent: For example, when you sign up for newsletters or marketing emails.
- It is necessary for a contract: When processing your data is required to fulfill a contract, such as delivering requested services.
- It is required to comply with a legal obligation.
- It is in our legitimate interests: For example, analyzing usage to improve our website and services.
3. Your GDPR Rights
Under the GDPR, you have the following rights regarding your personal data:
- Right of Access: You have the right to request copies of your personal data held by us.
- Right to Rectification: You have the right to request corrections to any inaccurate or incomplete data.
- Right to Erasure (“Right to be Forgotten”): You can request the deletion of your personal data under certain conditions.
- Right to Restrict Processing: You may request that we limit how we process your data in specific cases.
- Right to Data Portability: You may request a copy of your data in a structured, commonly used, and machine-readable format.
- Right to Object: You have the right to object to our processing of your data when we are processing it for legitimate interests, direct marketing, or profiling purposes.
- Right to Withdraw Consent: If we process your data based on consent, you can withdraw it at any time without affecting the lawfulness of processing based on consent before its withdrawal.
To exercise any of these rights, please contact us at [email protected].
4. Data Retention
We retain personal data only as long as necessary to fulfill the purposes for which it was collected or as required by law. When personal data is no longer needed, it is securely deleted.
5. Data Security
We implement appropriate technical and organizational measures to protect your personal data from unauthorized access, loss, or misuse. While we strive to use commercially acceptable means to protect your data, no security system is 100% secure.
6. Third-Party Data Sharing
We may share data with trusted third parties who assist us in providing and improving our services, such as analytics providers and email service providers. These parties are obligated to keep your information confidential and are not allowed to use it for any purpose other than performing services on our behalf.
We do not sell, trade, or rent your personal data to third parties.
7. Data Transfers Outside the EU
Your personal data may be transferred to, and processed in, countries other than the country in which you are a resident. When data is transferred outside the EU, we ensure that it is protected by appropriate safeguards, such as the use of EU-approved Standard Contractual Clauses.
8. Complaints
If you believe your rights under GDPR have been violated, you have the right to file a complaint with your local data protection authority. We encourage you to contact us first at [email protected] to address your concerns.