Cozycookingkitchen GDPR Compliance Policy

Last Updated: April 03, 2026

Introduction

Cozycookingkitchen (“we”, “our”, “us”) operates the website cozycookingkitchen.com (the “Site”). This policy explains how we collect, use, store and protect your personal data in accordance with the General Data Protection Regulation (GDPR) and other applicable data‑protection laws. By accessing or using the Site, you acknowledge that you have read and understood this policy.

Personal Data We Collect

We collect the following types of personal data:

• Email addresses: When you subscribe to our newsletter, create an account, or contact us, we store your email address.
• Cookies and similar tracking technologies: We use cookies to remember your preferences, analyze traffic, and personalize content.
• Analytics data: We employ Google Analytics and similar tools to gather anonymised usage statistics such as page views, session duration and geographical location.

How We Protect Your Data

We employ a range of technical and organisational measures to safeguard your personal data:

• SSL/TLS encryption: All data transmitted between your browser and our servers is encrypted using HTTPS.
• Secure servers: We host our data on encrypted, access‑controlled servers maintained by reputable cloud providers.
• Limited retention: Personal data is stored only as long as necessary to fulfil the purpose for which it was collected or to comply with legal obligations. Once the retention period expires, data is securely deleted.
• Access control: Only authorised staff with a legitimate business need can access personal data. All employees undergo regular data‑protection training.

Legal Basis for Processing

We process your personal data on the following lawful bases:

• Consent: When you sign up for our newsletter, create an account, or provide any other personal data, you give us explicit consent to process that data.
• Legitimate interest: We process data necessary for providing and improving our services, such as analyzing traffic to identify user preferences and enhancing site performance.

GDPR Rights You Have

Under the GDPR, you have the following rights with respect to your personal data. Below we explain each right and how you can exercise it.

• Right to Access: You can request a copy of the personal data we hold about you, including the purpose of processing, categories of data, and recipients.
• Right to Rectification: If any personal data is inaccurate or incomplete, you can ask us to correct or update it.
• Right to Erasure: Also known as the “right to be forgotten”, you can request the deletion of your personal data, subject to legal obligations and legitimate interests.
• Right to Restrict Processing: You may request that we suspend the processing of your data while we verify its accuracy or the legality of the processing.
• Right to Data Portability: You can obtain your personal data in a structured, commonly used format (e.g., CSV) and transfer it to another controller.
• Right to Object: You can object to processing for direct marketing, profiling, or any other reason based on legitimate interests.
• Right to Withdraw Consent: You may withdraw consent at any time, which will not affect the lawfulness of processing based on other grounds.

How to Exercise Your Rights

To exercise any of the rights above, please contact us at:

[email protected]

When you contact us, please provide:

• Full name and contact details
• Any identifying information that helps us locate your data (e.g., email address, account ID)
• Clear description of the request (e.g., “I want to delete my email address”)

We will respond to your request within 30 calendar days, as required by the GDPR. If we need more time (e.g., to verify your identity), we will inform you and provide a reason for the delay.

Response Time and Data Retention

All GDPR‑related requests will be addressed within 30 days from the date we receive your request. If the request is complex, we may extend this period by up to 30 additional days, but we will inform you in writing and explain the reason.

Personal data is retained only as long as necessary to fulfill the purposes outlined in this policy or to comply with legal obligations. Once the retention period ends, data is permanently deleted or anonymised.

Contact Us

For any questions, concerns, or further information regarding our data‑protection practices, please reach out to our Data Protection Officer at the email address above. We are committed to protecting your privacy and ensuring compliance with the GDPR.

Cozycookingkitchen – Your trusted partner for delicious, wholesome recipes. Thank you for trusting us with your personal data.