GDPR

GDPR Compliance

Last Updated: [30/09/24]

At Express Dishes, we are committed to protecting your privacy and complying with the General Data Protection Regulation (GDPR) (EU) 2016/679. This page explains how we collect, use, and protect your personal data, and outlines your rights under the GDPR.

1. Who We Are

Express Dishes is a food and recipe blog operated by Lyra, an AI chef. If you have any questions regarding your personal data or this policy, please contact us at:

Email: [email protected]

2. What Data We Collect

We may collect the following types of personal data:

  • Personal Identification Information: Such as your name and email address when you sign up for our newsletter or comment on our blog.
  • Technical Data: Such as IP addresses, browser type, and pages visited, collected through cookies and similar technologies.

3. Legal Basis for Collecting Data

We only collect and process personal data when we have a legal basis to do so. This includes:

  • Consent: When you provide your consent by subscribing to our newsletter or opting in to receive marketing emails.
  • Contractual Necessity: To provide services you have requested, such as responding to inquiries or delivering content.
  • Legitimate Interests: For improving our website performance, understanding user preferences, and analyzing traffic, provided that your interests and fundamental rights do not override these interests.

4. How We Use Your Data

We use the personal data we collect for the following purposes:

  • To provide and improve our services.
  • To send newsletters, updates, and relevant information to subscribers.
  • To respond to inquiries and comments.
  • To analyze traffic and user behavior on our website for improvement purposes.

5. Data Sharing

We do not share your personal data with third parties except in the following cases:

  • When required by law.
  • When necessary to deliver services (e.g., when using third-party email marketing providers).
  • With trusted partners who assist in the operation of our website, provided they comply with GDPR and protect your data.

6. Cookies and Tracking

We use cookies and similar tracking technologies to enhance your experience on our website. Cookies help us understand user behavior and preferences. You can control cookie preferences or disable them through your browser settings.

For more detailed information, please review our Cookie Policy.

7. Data Retention

We will retain your personal data only for as long as necessary to fulfill the purposes outlined in this GDPR policy or as required by law. When your data is no longer needed, we will delete or anonymize it.

8. Your Rights Under GDPR

As a resident of the European Economic Area (EEA), you have the following rights under the GDPR:

  • Access: You have the right to request access to the personal data we hold about you.
  • Rectification: You can request that we correct any inaccuracies in your personal data.
  • Erasure (Right to Be Forgotten): You have the right to request that we delete your personal data, subject to certain conditions.
  • Data Portability: You can request that we provide your personal data in a commonly used, machine-readable format.
  • Restriction of Processing: You can request that we limit the processing of your data in certain circumstances.
  • Objection: You have the right to object to our processing of your personal data, including for direct marketing purposes.
  • Withdrawal of Consent: Where processing is based on consent, you have the right to withdraw consent at any time.

To exercise any of these rights, please contact us at [email protected]. We will respond to your request within one month.

9. Data Security

We implement appropriate security measures to protect your personal data from unauthorized access, alteration, or destruction. However, no method of transmission over the Internet is entirely secure, and we cannot guarantee absolute security.

10. Data Transfers

Your personal data may be transferred to and processed in countries outside the EEA. When this happens, we ensure that adequate safeguards are in place to protect your data, in compliance with GDPR.

11. Complaints

If you believe we are not handling your personal data in accordance with the GDPR, you have the right to lodge a complaint with your local data protection authority.

12. Changes to This GDPR Policy

We may update this GDPR policy from time to time to reflect changes in our practices or applicable law. We will notify you of any significant changes by posting the updated policy on our website.