2 minutes read

GDPR

Last Updated: 21/05/2025

1. Scope

This section applies to users in the European Union (EU) and explains how JulietteRecipes.com complies with the General Data Protection Regulation (GDPR).

2. Data Controller

The data controller for your personal information is:

[Your Business Name or Personal Name]

[Your Address (if applicable)]

📧 Email: [Your Contact Email]

3. Lawful Basis for Processing

We process your data based on:

✅ Consent (e.g., when you subscribe to our newsletter).

✅ Legitimate Interest (e.g., improving website functionality).

✅ Contractual Necessity (e.g., processing user-submitted recipes).

4. Your GDPR Rights

Under GDPR, you have the right to:

🔹 Access – Request a copy of your personal data.

🔹 Rectification – Correct inaccurate or incomplete data.

🔹 Erasure ("Right to Be Forgotten") – Request deletion of your data.

🔹 Restriction – Limit how we use your data.

🔹 Data Portability – Receive your data in a structured format.

🔹 Object – Opt out of certain processing (e.g., direct marketing).

🔹 Withdraw Consent – Revoke permissions at any time.

To exercise these rights, contact us at: [Your Contact Email].

5. Data Transfers Outside the EU

If we transfer data outside the EU (e.g., to US-based hosting or analytics providers), we ensure safeguards such as:

🔐 Standard Contractual Clauses (SCCs).

🔐 Privacy Shield-certified partners (where applicable).

6. Data Retention

We retain personal data only as long as necessary for:

• Delivering services (e.g., newsletters).
• Legal/compliance reasons.
• Analytics (typically anonymized after a set period).

7. Cookies & Tracking

We use cookies as described in our Cookie Policy ([Link]). You can:

🍪 Accept/Reject cookies via our banner.

⚙️ Adjust settings in your browser.

8. Automated Decision-Making

We do not use fully automated systems that affect users (e.g., profiling).

9. Data Protection Officer (DPO)

[If required, provide DPO contact details. Small businesses may not need one.]

10. Complaints

If you believe we’ve violated GDPR, you may lodge a complaint with:

• Our team ([Your Contact Email]).
• Your local Data Protection Authority (DPA).

Implementation Tips:

1. Add a GDPR Consent Banner (e.g., via CookieYes or OneTrust).
2. Document Data Processing Activities (e.g., what data you collect and why).
3. Update Your Privacy Policy to reference GDPR rights.
4. Sign Data Processing Agreements (DPAs) with third-party vendors (e.g., Google Analytics, email providers).

Would you like help drafting a Cookie Policy or adjusting your current policies for GDPR? 😊