GDPR Compliance Policy

Last Updated: April 03, 2026

1. Introduction

Welcome to Tastykitchenwave (the “Website”). This GDPR Compliance Policy explains how we collect, use, store, and protect your personal data in accordance with the General Data Protection Regulation (EU Regulation 2016/679) and related data‑protection laws. By accessing or using the Website, you acknowledge that you have read, understood, and agree to the terms outlined below.

2. Data We Collect

We collect the following types of personal data:

Email addresses – collected when you sign up for newsletters, recipes, or other services.
Cookies and similar tracking technologies – used to remember your preferences, analyze traffic, and personalize content.
Analytics data – aggregated, anonymized data gathered through Google Analytics and other analytics tools to improve user experience.

All data is processed in strict compliance with GDPR principles of lawfulness, fairness, transparency, purpose limitation, data minimization, accuracy, storage limitation, integrity, and confidentiality.

3. Legal Basis for Processing

We process personal data on the following legal bases:

Consent – when you voluntarily provide your email address or opt‑in to receive marketing communications.
Legitimate Interest – for improving website functionality, analytics, and delivering relevant content. We conduct a legitimate interest assessment and ensure that your rights are not overridden by our interests.

4. How We Protect Your Data

We employ robust technical and organisational measures to safeguard your personal data:

SSL/TLS encryption – all data transmitted between your browser and our servers is encrypted using HTTPS.
Secure servers – hosted on reputable cloud providers with regular security audits, firewalls, and intrusion detection.
Encryption at rest – sensitive data, such as email addresses, are stored encrypted.
Limited retention – email addresses are retained for 12 months after the last interaction, cookies for 2 years, and analytics data is aggregated and deleted after 30 days.
Access controls – only authorised staff with a legitimate need can access personal data, and all access is logged.

5. GDPR Rights and How to Exercise Them

Under GDPR, you have the following rights. Each right is explained in detail below, and you can exercise any of them by contacting us at [email protected]. We will respond within 30 days of receiving your request.

Right to Access

You may request a copy of all personal data we hold about you, including the purposes of processing, categories of data, recipients, and storage periods. We will provide a concise, intelligible summary of the requested information.

Right to Rectification

If any of your personal data is inaccurate or incomplete, you can ask us to correct it. We will update the data promptly and notify any third parties to whom we have shared the incorrect information, if applicable.

Right to Erasure

Under certain circumstances (e.g., you withdraw consent, the data is no longer necessary, or you object and we have no overriding legitimate interest), you can request the deletion of your personal data. We will delete it from all our systems, except where we are legally required to retain it.

Right to Restrict Processing

You may ask us to temporarily limit the processing of your personal data (e.g., while we verify the accuracy of the data). We will honour this request until the issue is resolved.

Right to Data Portability

You can obtain your personal data in a structured, commonly used, and machine‑readable format (e.g., CSV). We will provide the data in a format that allows you to transfer it to another controller, where feasible.

Right to Object

You may object to the processing of your personal data for direct marketing or profiling purposes. Upon receipt of your objection, we will stop processing your data for those purposes unless we can demonstrate a compelling legitimate interest that overrides your objection.

Right to Withdraw Consent

If you have provided consent to receive marketing communications or other purposes, you can withdraw that consent at any time. We will immediately stop sending you marketing emails and remove your data from marketing lists.

6. How to Exercise Your Rights

To exercise any of the rights above, please send a clear, written request to:

Tastykitchenwave
Data Protection Officer
Email: [email protected]

Include sufficient information for us to identify you (e.g., email address, name, or any other identifier). We may request additional verification to protect your privacy. All requests will be processed within 30 days, and we will notify you if we need more time or additional information.

7. Cookies and Tracking Technologies

The Website uses essential cookies for session management, as well as analytics and marketing cookies to improve your experience. You can manage cookie preferences via the Cookie Settings page or by adjusting your browser settings. Non‑essential cookies can be disabled, but this may affect functionality.

8. Third‑Party Services

We may share your personal data with third‑party service providers (e.g., email marketing platforms, analytics providers) for legitimate business purposes. All such providers are bound by confidentiality agreements and are required to comply with GDPR. We ensure that no third party uses your data for marketing without your explicit consent.

9. Data Breach Notification

In the unlikely event of a data breach that could compromise your personal data, we will assess the risk and notify you, as well as the relevant supervisory authority, within 72 hours if the breach poses a high risk to your rights and freedoms.

10. Updates to This Policy

We may update this GDPR Compliance Policy from time to time. Any changes will be posted on this page, and the “Last Updated” date will reflect the latest revision. We encourage you to review the policy periodically to stay informed about how we protect your personal data.

11. Contact Us

If you have any questions or concerns about this policy, or if you wish to report a data‑protection issue, please contact us at [email protected]. We are committed to protecting your privacy and will respond promptly.