GDPR Compliance Policy – Mealflavorkitchen
Last Updated: April 03, 2026
1. Introduction
Mealflavorkitchen (“we”, “our”, “us”) is committed to protecting the privacy and personal data of our website visitors, customers, and partners. This GDPR Compliance Policy explains what personal data we collect, how we use it, and the rights you have under the General Data Protection Regulation (EU Regulation 2016/679). If you have any questions or would like to exercise any of your rights, please contact us at [email protected].
2. Data We Collect
- Email addresses: Collected when you sign up for our newsletter, place an order, or request a recipe. We use these to communicate with you, deliver products, and provide personalized offers.
- Cookies: We set session cookies to maintain your shopping cart and preference cookies to remember your language and theme choices. Third‑party analytics cookies (e.g., Google Analytics) are also used to understand visitor behaviour.
- Analytics data: We collect aggregated, anonymised data about how users interact with our site (page views, time spent, navigation paths). This helps us improve usability and content relevance.
3. How We Protect Your Data
- SSL/TLS encryption: All data transmitted between your browser and our servers is encrypted using the latest TLS 1.3 protocol.
- Secure servers: We host our website on industry‑standard, geographically redundant servers with regular penetration testing and vulnerability scanning.
- Limited retention: Personal data is retained only for as long as necessary to fulfil the purpose for which it was collected or to comply with legal obligations. For example, order‑related data is kept for five years, while newsletter subscriptions are retained until you unsubscribe.
- Access controls: Only authorised staff with a legitimate need can access personal data, and all staff undergo regular privacy training.
4. Legal Basis for Processing
We process personal data on the basis of:
- Consent: When you voluntarily provide your email address or opt‑in to newsletters, we rely on your explicit consent.
- Legitimate interests: We process data that is necessary for the legitimate interests of Mealflavorkitchen, such as improving website functionality, providing customer support, and ensuring the security of our services.
5. Your GDPR Rights
Under the GDPR, you have the following rights. We are committed to respecting and facilitating these rights:
Right to Access
You may request a copy of any personal data we hold about you, along with information about how we process that data.
Right to Rectification
If any of your personal data is inaccurate or incomplete, you can ask us to correct it.
Right to Erasure
You may request the deletion of your personal data, provided no legal obligation requires us to keep it.
Right to Restrict Processing
In certain circumstances, you can ask us to limit how we use your data—for example, if you challenge its accuracy.
Right to Data Portability
You can obtain a structured, commonly used format of your data and request that we transmit it directly to another controller.
Right to Object
You may object to processing for direct marketing or for profiling activities that affect you.
Right to Withdraw Consent
If you have given us consent, you can withdraw it at any time, and we will stop processing your data for that purpose.
6. How to Exercise Your Rights
To exercise any of the rights above, please send a written request to [email protected]. Your request should include:
- Your full name and contact details.
- A description of the request (e.g., “I want to access all data I provided in 2025”).
- Any evidence that proves your identity (e.g., a scanned copy of a government ID).
We will acknowledge receipt of your request within 5 business days and respond to your request within 30 calendar days, as required by GDPR. If you need a quicker response, please let us know in your initial email.
7. Contact Information
For any questions about this policy or to exercise your GDPR rights, please contact us:
8. Updates to This Policy
We may update this GDPR Compliance Policy from time to time. Any changes will be posted on this page, and the “Last Updated” date will reflect the most recent revision. We encourage you to review the policy periodically to stay informed about how we protect your personal data.