General Data Protection Regulation (GDPR)

Effective Date: 05-18-2015

At CookFoody.com, we are fully committed to protecting the privacy and personal data of our users. We recognize and comply with the General Data Protection Regulation (GDPR) (EU) 2016/679, which governs the collection, processing, and storage of personal data for individuals located in the European Union (EU).

1. Who We Are

CookFoody.com is a food blog dedicated to sharing recipes and culinary tips. and we act as the data controller for the personal data you provide when using our services.

You may contact us at:
📧 Email: [email protected]

2. Lawful Basis for Processing

Under GDPR, we only process your personal data based on the following lawful grounds:

  • Consent: You have given clear consent for us to process your personal data (e.g., newsletter sign-up).
  • Contractual necessity: Processing is necessary to fulfill a contract with you or to take steps before entering into a contract.
  • Legal obligation: Processing is necessary for compliance with a legal obligation.
  • Legitimate interest: Processing is necessary for our legitimate interests (e.g., website analytics), provided those interests are not overridden by your rights.

3. Your Rights Under GDPR

If you are an EU resident, you have the following rights:

  • Right to Access – Request access to the personal data we hold about you.
  • Right to Rectification – Request correction of inaccurate or incomplete data.
  • Right to Erasure – Request deletion of your personal data (“right to be forgotten”).
  • Right to Restrict Processing – Request restriction of processing your personal data.
  • Right to Data Portability – Receive your personal data in a structured, commonly used format.
  • Right to Object – Object to certain types of processing, such as direct marketing.
  • Right to Withdraw Consent – Withdraw your consent at any time when processing is based on consent.

To exercise any of these rights, please contact us at [email protected]. We will respond within 30 days.

4. Data Collection and Use

We collect and process personal data such as:

  • Name and email address (via newsletter or contact form)
  • IP address and browser information (for analytics)
  • Cookies and usage data (for performance, personalization, and advertising)

We only collect the minimum data necessary and retain it for no longer than necessary.

5. Third-Party Services

We may use trusted third-party tools such as:

  • Email marketing services (e.g., Mailchimp, ConvertKit)
  • Analytics tools (e.g., Google Analytics)
  • Ad networks (e.g., Google AdSense)

These providers may also collect and process data in compliance with GDPR. We ensure all third-party processors adhere to appropriate data protection standards.

6. Data Security

We implement appropriate technical and organizational measures to ensure the security of your personal data, including SSL encryption, firewall protection, and access controls.

7. International Data Transfer

If your data is transferred outside the EU (e.g., to servers in the United States), we ensure appropriate safeguards such as:

  • Standard Contractual Clauses (SCCs)
  • Privacy Shield Certification (if applicable)

8. Cookies and Tracking

We use cookies to improve your browsing experience. Upon your first visit, you will be presented with a cookie consent banner, allowing you to accept or reject non-essential cookies.

You can change your cookie preferences at any time through your browser settings or our cookie consent manager.

9. Complaint

If you believe your data protection rights have been violated, you have the right to lodge a complaint with your local Data Protection Authority (DPA).

10. Changes to This Statement

We may update this GDPR Statement as needed. Updates will be posted on this page with a revised “Effective Date.”

If you have questions or concerns about this GDPR Statement or your personal data, please contact:

📧 Email: [email protected]