At Lily’s Kitchen, we are committed to protecting your privacy and complying with the General Data Protection Regulation (GDPR). This statement outlines how we collect, use, and protect your personal data in accordance with the GDPR guidelines.
1. Data Controller
The data controller responsible for processing your personal data is Lily’s Kitchen. You can contact us at:
Email: [email protected]
2. Types of Data We Collect
We may collect the following types of personal data:
- Personal Identifiable Information: Name, email address, and other contact details when you subscribe to our newsletter, leave a comment, or contact us directly.
- Non-personally Identifiable Information: IP addresses, browser type, device type, and browsing behavior to improve your experience on our website.
3. Purpose of Data Collection
We collect and process your personal data for the following purposes:
- To communicate with you, respond to inquiries, and provide customer support.
- To send you newsletters or promotional emails if you have subscribed to our email list.
- To analyze website traffic and improve our content and user experience.
4. Legal Basis for Processing Personal Data
We process your personal data based on the following legal grounds:
- Consent: When you provide your data voluntarily, such as subscribing to our newsletter or contacting us.
- Contractual Necessity: To fulfill any obligations you may have with us, such as sending requested information or responding to inquiries.
5. Data Retention
We will retain your personal data only for as long as necessary to fulfill the purposes for which it was collected or as required by law. You can unsubscribe from our newsletter at any time by following the unsubscribe link in our emails.
6. Your Rights Under GDPR
Under the GDPR, you have the following rights:
- Right to Access: You have the right to request access to the personal data we hold about you.
- Right to Rectification: You have the right to correct any inaccurate or incomplete data we have about you.
- Right to Erasure: You can request that we delete your personal data when it is no longer necessary for the purposes it was collected.
- Right to Restriction: You can request that we restrict the processing of your personal data.
- Right to Object: You have the right to object to the processing of your data in certain situations.
- Right to Data Portability: You have the right to request a copy of your data in a structured, commonly used format to transfer to another service.
To exercise any of these rights, please contact us at [email protected].
7. Data Security
We take the security of your personal data seriously and use appropriate technical and organizational measures to protect it from unauthorized access, loss, or misuse. However, no method of electronic transmission or storage is 100% secure, and we cannot guarantee the absolute security of your data.
8. Third-Party Sharing
We do not sell, rent, or share your personal data with third parties for marketing purposes. We may share your data with trusted service providers to help run our website and services, but only under strict confidentiality agreements.
9. International Transfers
If your personal data is transferred outside the European Economic Area (EEA), we ensure that appropriate safeguards are in place to protect your privacy.
10. Complaints
If you believe that your data has been mishandled or that your privacy rights have been violated, you have the right to lodge a complaint with a supervisory authority in your country.