GDPR Privacy Notice

This GDPR Privacy Notice explains how CookingCircuit.com processes personal data of European Union (EU) residents in accordance with the General Data Protection Regulation (GDPR).

Data Controller

I, Amelia, am the data controller for CookingCircuit.com.
Contact email: [email protected]

Personal Data I Collect

Information You Provide

  • Account Information: Name and email address when creating an account
  • Profile Data: Optional profile picture and cooking preferences
  • User Content: Comments, recipe ratings, and cooking tips
  • Communication Data: Information provided in emails or contact forms
  • Newsletter Subscriptions: Email address for recipe updates

Automatically Collected Data

  • Technical Data: IP address, browser type, device information
  • Usage Data: Pages visited, recipes viewed, site interactions
  • Cookie Data: Information collected through cookies (see Cookie Policy)

Legal Basis for Processing

I process your personal data under the following legal bases:

  1. Contractual Necessity
  • Managing your account
  • Providing recipe services
  • Processing your recipe submissions
  1. Legitimate Interests
  • Improving recipes and website functionality
  • Analyzing website usage
  • Preventing fraud and ensuring security
  1. Consent
  • Sending newsletters
  • Using non-essential cookies
  • Processing your recipe ratings and comments
  1. Legal Obligation
  • Complying with EU law
  • Responding to legal requests
  • Maintaining security records

How I Use Your Data

I use your personal data to:

  • Manage your account
  • Display personalized recipe recommendations
  • Process your comments and ratings
  • Send newsletters (with consent)
  • Improve website functionality
  • Ensure website security
  • Respond to your inquiries

Data Retention

I retain your personal data for:

  • Account Data: As long as your account is active
  • Comments/Ratings: Until you request deletion
  • Technical Data: 26 months for analysis
  • Newsletter Data: Until you unsubscribe

Your GDPR Rights

Under GDPR, you have the following rights:

  1. Right to Access
  • Request copies of your personal data
  • Understand how I process your data
  1. Right to Rectification
  • Correct inaccurate personal data
  • Complete incomplete personal data
  1. Right to Erasure
  • Request deletion of your personal data
  • Remove your account and content
  1. Right to Restrict Processing
  • Limit how I use your data
  • Temporarily suspend processing
  1. Right to Data Portability
  • Receive your data in a structured format
  • Transfer your data to another service
  1. Right to Object
  • Object to processing based on legitimate interests
  • Stop direct marketing communications
  1. Rights Regarding Automated Decision Making
  • Not subject to automated decision-making
  • Request human intervention in decisions

International Data Transfers

While I am based in the United States, I ensure appropriate safeguards when transferring EU data:

  • Use of Standard Contractual Clauses
  • Implementation of appropriate security measures
  • Careful selection of data processors

Data Security

I implement appropriate security measures:

  • Encrypted data transmission
  • Secure data storage
  • Regular security assessments
  • Limited data access
  • Staff training on data protection

Cookie Usage

I use cookies to:

  • Maintain essential website functionality
  • Remember your preferences
  • Analyze site usage
  • Enable social features

You can control cookies through your browser settings.

Third-Party Processors

I use the following categories of data processors:

  • Website hosting providers
  • Analytics services
  • Email service providers
  • Payment processors (if applicable)

All processors are GDPR-compliant and bound by data processing agreements.

Children’s Data

I do not knowingly collect or process data from children under 18. If you believe I have collected such data, please contact me for removal.

Data Breaches

In case of a data breach that risks your rights and freedoms, I will:

  • Notify relevant supervisory authorities within 72 hours
  • Inform affected users without undue delay
  • Take measures to mitigate any risks

Updates to This Notice

I may update this Privacy Notice to reflect:

  • Changes in how I process data
  • New regulatory requirements
  • Improved privacy practices

Changes will be posted on this page with an updated date.

Contact Information

For any GDPR-related requests or concerns: