GDPR Compliance for Harmony Cooking
Effective Date: October 3, 2024
At Harmony Cooking, we are committed to protecting the privacy and security of our users, particularly those located in the European Economic Area (EEA). This page outlines how we comply with the General Data Protection Regulation (GDPR) and explains your rights regarding your personal data.
1. What is GDPR?
The General Data Protection Regulation (GDPR) is a legal framework that sets guidelines for the collection and processing of personal information from individuals within the EEA. GDPR aims to give individuals greater control over their personal data and requires businesses to be transparent about how they handle it.
2. What Personal Data We Collect
We may collect and process the following types of personal data:
- Personal Information: Name, email address, and any other information provided when subscribing to newsletters, contacting us, or engaging with the site.
- Usage Data: Information about how you use our website, such as your IP address, browser type, browsing behavior, and interactions with the site.
3. How We Use Your Data
We collect and process personal data for the following purposes:
- To provide and maintain our website and services.
- To communicate with you (e.g., respond to inquiries, send newsletters if you have opted in).
- To improve our website, based on analytics and user feedback.
- To comply with legal obligations.
4. Legal Basis for Processing Personal Data
Under GDPR, we are required to have a lawful basis for processing your personal data. We process your data under the following lawful bases:
- Consent: When you have provided explicit consent to the processing of your personal data, for example, when you subscribe to our newsletter.
- Legitimate Interest: We may process your data when it is necessary for the legitimate interests of our business, provided that these interests do not override your privacy rights.
- Compliance with Legal Obligations: We may process your data to fulfill legal obligations.
5. Your Data Protection Rights
Under GDPR, you have the following rights regarding your personal data:
- Right of Access: You have the right to request a copy of your personal data that we hold.
- Right to Rectification: You can request corrections to any inaccurate or incomplete personal data.
- Right to Erasure (“Right to be Forgotten”): You can request that we erase your personal data, subject to certain conditions.
- Right to Restrict Processing: You can request that we restrict the processing of your personal data under certain circumstances.
- Right to Data Portability: You have the right to obtain and reuse your personal data for your own purposes across different services.
- Right to Object: You have the right to object to the processing of your personal data in certain situations, such as direct marketing.
- Right to Withdraw Consent: If we are processing your data based on your consent, you can withdraw your consent at any time.
To exercise any of these rights, please contact us at [email protected]. We will respond to your request within 30 days.
6. Data Retention
We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected or as required by law. After this period, we will securely delete or anonymize your data.
7. Data Sharing
We do not sell or share your personal data with third parties for marketing purposes. However, we may share your data with:
- Service Providers: Third-party services we use to operate our website (e.g., analytics providers, email services). These providers are bound by data protection agreements.
- Legal Obligations: We may disclose your data to comply with legal obligations or protect our rights.
8. International Transfers
If you are located within the EEA, your personal data may be transferred to and processed in countries outside the EEA. We ensure that such transfers are conducted in compliance with GDPR and that appropriate safeguards (such as Standard Contractual Clauses) are in place.
9. Security of Your Data
We use industry-standard measures to protect your personal data from unauthorized access, disclosure, or destruction. However, no method of transmission over the internet or electronic storage is 100% secure, and we cannot guarantee absolute security.
10. Children’s Privacy
Harmony Cooking does not knowingly collect or solicit personal data from individuals under the age of 16. If you believe that we have inadvertently collected such data, please contact us, and we will take steps to delete it.
11. Updates to This GDPR Policy
We may update this GDPR Compliance page from time to time to reflect changes in our practices or legal requirements. Any updates will be posted on this page with the revised date at the top.
12. Contact Information
If you have any questions or concerns about our GDPR compliance or wish to exercise your data protection rights, please contact us at:
Email: [email protected]