GDPR Compliance Policy

Last Updated: April 03, 2026

1. Introduction

Easydishbites (“we”, “our”, “us”) is committed to protecting the privacy and personal data of all individuals who interact with our website, https://easydishbites.com. This policy explains what personal data we collect, how we use it, the legal basis for processing, how we safeguard it, and the rights you have under the European Union General Data Protection Regulation (GDPR). By visiting or using our site, you consent to the practices described herein.

2. Data We Collect

We collect the following categories of personal data in a transparent and proportionate manner:

• Email addresses: When you sign up for newsletters, request recipes, or contact us.
• Cookies and similar tracking technologies: To improve user experience, personalize content, and analyze traffic.
• Analytics data: Aggregated, anonymous information such as page views, device type, and geographic location, gathered through tools like Google Analytics and Matomo.

3. Legal Basis for Processing

We process personal data under two primary legal bases:

• Consent: Where you explicitly agree to receive marketing emails or enable cookies for personalized experiences.
• Legitimate Interest: For improving our services, ensuring site security, and conducting legitimate business operations such as fraud prevention and performance monitoring.

4. How We Protect Your Data

Your data is protected through a layered security approach:

• SSL/TLS Encryption: All data transmitted between your browser and our servers is encrypted using HTTPS.
• Secure Servers: We host our data on reputable, ISO 27001‑certified cloud providers with robust physical and logical safeguards.
• Access Controls: Only authorized personnel have access to personal data, and all staff undergo regular privacy training.
• Limited Retention: Personal data is stored only as long as necessary to fulfil the purposes for which it was collected, after which it is securely deleted or anonymised.

5. Your Rights Under the GDPR

Under the GDPR, you have the following rights. We provide clear mechanisms to exercise each right:

• Right to Access: You can request a copy of the personal data we hold about you.
• Right to Rectification: You can ask us to correct inaccurate or incomplete data.
• Right to Erasure: You can request deletion of your personal data under certain circumstances.
• Right to Restrict Processing: You may ask us to limit the processing of your data while we verify its accuracy.
• Right to Data Portability: You can obtain your data in a structured, commonly used format and transfer it to another controller.
• Right to Object: You can object to processing for direct marketing or profiling purposes.
• Right to Withdraw Consent: You can withdraw consent at any time, and we will stop processing your data accordingly.

6. How to Exercise Your Rights

To exercise any of the rights listed above, please contact us at [email protected] and include:

• Your full name and contact information.
• The specific request you are making (e.g., “access request”, “erasure request”).
• Any relevant identifiers, such as the email address associated with your account or a screenshot of the data you wish to correct.

For convenience, you may also use the “Contact Us” form on our website and specify the type of GDPR request in the subject line.

7. Response Time

We will acknowledge receipt of your request within 5 business days and respond to the full request within 30 calendar days, as required by the GDPR. If we need additional information to verify your identity or to comply with your request, we will inform you promptly.

8. Data Retention

Personal data is retained only for as long as necessary to achieve the purposes for which it was collected, including any legal or regulatory obligations. Typical retention periods are:

• Email addresses: up to 12 months after last interaction, unless you opt‑in to stay on our mailing list.
• Cookies: session cookies are deleted when you close your browser; persistent cookies are stored for up to 12 months unless you delete them.
• Analytics data: aggregated data is retained for 12 months to monitor site performance and trends.

9. Changes to This Policy

We may update this GDPR Compliance Policy from time to time. Any changes will be posted on our website with a new “Last Updated” date. We encourage you to review this policy periodically to stay informed about how we protect and manage your personal data.

10. Contact Information

If you have any questions about this policy, your personal data, or any of your rights, please contact our Data Protection Officer:

Easydishbites Data Protection Officer
Email: [email protected]
Address: 123 Culinary Lane, Food City, FC 45678
Phone: +1 (555) 123‑4567

For urgent matters, please refer to the contact details above or use the “Contact Us” form on our website. We are committed to addressing your concerns promptly and in accordance with applicable data protection laws.