GDPR Compliance Policy

This GDPR Compliance Policy explains how familyrecipetable.com (hereafter “we”, “our”, “us”) collects, uses, protects, and shares your personal data in accordance with the European Union General Data Protection Regulation (GDPR). It is part of our commitment to transparency and to giving you control over your personal information.

1. Data We Collect

We collect the following types of personal data when you interact with our website:

Email addresses: When you sign up for newsletters, submit recipes, or request support, we store your email address to communicate with you.
Cookies: We use first‑party cookies to remember your preferences and session data. Third‑party cookies from analytics services (e.g., Google Analytics) track anonymous usage patterns.
Analytics data: We collect aggregated, anonymised data about page views, click‑through rates, and device information to improve site performance.

2. Legal Basis for Processing

Consent: For optional services such as newsletters or promotional emails, we obtain your explicit consent. You may withdraw consent at any time by unsubscribing or contacting us.

Legitimate Interest: We process data necessary to operate the website, provide support, and improve user experience. This includes the use of cookies for analytics and the storage of email addresses for communication.

3. How We Protect Your Data

• SSL/TLS Encryption: All data transmitted between your browser and our servers is encrypted with industry‑standard SSL/TLS certificates, ensuring that personal data cannot be intercepted.

• Secure Servers: We host our website on secure, dedicated servers that are regularly patched, monitored, and backed up. Access to personal data is restricted to authorized personnel only.

• Limited Retention: Email addresses are retained for a maximum of 12 months after the last activity or communication. Cookies and analytics data are deleted automatically after 30 days unless you opt‑in to longer retention for specific purposes.

4. Your GDPR Rights

Right to Access

You may request a copy of all personal data we hold about you, including the source, purpose, and categories of data. Submit a request to [email protected].

Right to Rectification

If any personal data is inaccurate or incomplete, you can ask us to correct it. Provide the correct information via the same email address.

Right to Erasure (Right to be Forgotten)

You may request the deletion of your personal data, subject to legal retention obligations. Contact us at [email protected].

Right to Restrict Processing

If you contest the accuracy of your data or if the processing is unlawful, you can ask us to restrict its use. We will temporarily suspend processing while reviewing your claim.

Right to Data Portability

You can obtain your personal data in a structured, commonly used, machine‑readable format (e.g., CSV). Send a request to [email protected].

Right to Object

You may object to the processing of your data for direct marketing or profiling purposes. If you exercise this right, we will cease all marketing communications and remove your data from any marketing lists.

Right to Withdraw Consent

You can withdraw consent at any time by unsubscribing from newsletters or contacting us. Withdrawal will not affect the lawfulness of any processing carried out before withdrawal.

5. How to Exercise Your Rights

To exercise any of the rights outlined above, please send an email to [email protected] with the subject line “GDPR Right Request – [Your Name]”. Include a brief description of the request and any supporting documentation that can help us verify your identity. We will respond within 30 calendar days, as required by GDPR.

If you prefer, you can also use the contact form on our website. Be sure to specify the GDPR right you are exercising so we can route your request appropriately.

6. Retention and Deletion

We retain personal data only as long as necessary to fulfill the purposes for which it was collected, or as required by law. After the retention period, data is securely deleted or anonymised. Email addresses are kept for up to 12 months after the last interaction; all other data is deleted after 30 days unless otherwise needed for legitimate business purposes.

7. Data Sharing and Third‑Party Services

We do not sell or rent your personal data to third parties. We share data only with service providers that help us operate the website, such as email delivery services and analytics vendors. All such providers are bound by confidentiality agreements and are required to comply with GDPR. We regularly review these agreements to ensure ongoing compliance.

8. Security Measures

In addition to SSL/TLS encryption and secure servers, we employ the following security practices:

Regular vulnerability scans and penetration testing.
Multi‑factor authentication for administrative access.
Least‑privilege access controls for staff handling personal data.

9. Contact Information

If you have any questions about this policy, your data, or how we process your personal information, please contact us:

Email: [email protected]
Address: 123 Family Kitchen Lane, Recipe City, 45678, USA

Last Updated: April 03, 2026