GDPR Compliance Policy

Site: dailykitchenflow.com

Contact Email: [email protected]

Last Updated: April 03, 2026

1. What Personal Data We Collect

We collect and process the following personal data:

Email addresses – When you subscribe to newsletters, create an account, or contact us.
Cookies and Similar Technologies – We use first‑party cookies to remember your preferences and session data, and third‑party cookies for analytics and advertising purposes.
Analytics Data – We gather anonymous usage statistics via Google Analytics, Matomo, and other services to improve our content and user experience.

2. How We Protect Your Personal Data

We implement a layered security strategy that includes:

Transport Layer Security (TLS/SSL) for all data transmitted between your browser and our servers.
Encrypted storage on secure, geographically redundant servers.
Regular vulnerability scans and penetration tests performed by third‑party experts.
Access controls that limit data access to authorized personnel only, with mandatory two‑factor authentication.
Retention policies that delete personal data no longer necessary for the purpose it was collected, typically within 12 months of inactivity.

3. Legal Basis for Processing

We process your personal data based on the following lawful bases:

Consent – For newsletters, marketing communications, and optional cookie preferences.
Legitimate Interest – To provide, improve, and secure our services, to personalize content, and to analyze usage patterns for business development.

4. Your GDPR Rights

Under the General Data Protection Regulation (GDPR), you have the following rights regarding your personal data:

Right to Access

You may request a copy of the personal data we hold about you, along with details of how it is processed, the source of the data, and the recipients.

Right to Rectification

If your data is inaccurate or incomplete, you can ask us to correct or complete it.

Right to Erasure

Also known as the “right to be forgotten.” You may request deletion of your personal data, provided no legal obligations prevent us from doing so.

Right to Restrict Processing

You can ask us to limit the processing of your data, for example, if you contest its accuracy or if the processing is unlawful.

Right to Data Portability

We will provide your data in a structured, commonly used, and machine‑readable format, enabling you to transfer it to another controller.

Right to Object

You may object to the processing of your data for direct marketing or profiling purposes, and we will stop processing unless we can demonstrate compelling legitimate grounds.

Right to Withdraw Consent

At any time you can withdraw consent for any processing activity. Withdrawal does not affect the lawfulness of processing based on consent before withdrawal.

5. How to Exercise Your Rights

To exercise any of the rights listed above, please contact us at [email protected] with a brief description of your request. For data access or portability requests, include the type of data you want and the format you prefer.

When making a request, we may ask for a form of identification to confirm your identity, in accordance with the GDPR’s authenticity principle.

6. Response Time

We commit to responding to all lawful requests within 30 days of receipt. If we need more time to verify your identity or to gather the necessary information, we will inform you and provide a new deadline.

7. Contact Us

If you have any questions about our data practices, the scope of this policy, or if you wish to lodge a complaint, please reach out to us at [email protected].

This policy is subject to change. We encourage you to review it regularly to stay informed about how we protect your personal data.