GDPR Compliance Policy

Effective Date: December 06, 2025

Website: https://dailyfoodplates.com

Contact for Data‑Protection Queries: gdpr@dailyfoodplates.com

1. Introduction

DailyFoodPlates (“we”, “our”, “us”) is committed to protecting the privacy and personal data of our users in accordance with the European Union General Data Protection Regulation (EU‑GDPR, Regulation (EU) 2016/679). This policy explains what personal data we collect, why we process it, how we protect it, and the rights you have under the GDPR. By using our website you acknowledge that you have read and understood this policy.

2. Personal Data We Collect

We collect only the data that is necessary for the provision of our services and for improving user experience. The categories of personal data we process are:

Email address: Used for newsletter subscriptions, account creation, and responding to support inquiries.
Cookies & tracking identifiers: Small files stored on your device to remember preferences, maintain session state, and collect analytics data.
Analytics data: Aggregated information such as IP address, browser type, pages visited, and time spent on the site. This data is never linked to personally identifiable information without your explicit consent.

3. Legal Basis for Processing

Under the GDPR, processing is lawful only when at least one of the following bases applies:

Consent (Article 6(1)(a)): When you voluntarily subscribe to our newsletter or accept optional cookies, you give us explicit consent to process your email address and related data.
Legitimate Interests (Article 6(1)(f)): We process analytics data and essential cookies to improve website performance, security, and user experience. These interests are balanced against your rights and freedoms.

4. How We Protect Your Data

We employ a range of technical and organisational measures to ensure the confidentiality, integrity, and availability of personal data:

Secure Transmission (SSL/TLS): All data exchanged between your browser and our servers is encrypted using HTTPS.
Secure Servers: Our hosting environment is hosted in GDPR‑compliant data centres with regular security audits, firewalls, and intrusion‑detection systems.
Limited Retention: Email addresses are retained only as long as you remain subscribed or until you request deletion. Analytics data is stored in an aggregated, pseudonymised form for a maximum of 24 months.
Access Controls: Only authorised personnel with a legitimate business need can access personal data, and they are bound by confidentiality agreements.

5. Your GDPR Rights

Under the GDPR you enjoy the following rights. Each right is accompanied by a Bootstrap icon for quick reference.

Right to Access

You may request a copy of the personal data we hold about you, together with information about how we process it.

Right to Rectification

If any of your personal data is inaccurate or incomplete, you have the right to have it corrected without undue delay.

Right to Erasure (Right to be Forgotten)

You may ask us to delete your personal data where the lawful basis for processing no longer applies, or where you withdraw consent.

Right to Restrict Processing

You can request that we limit the processing of your data while we verify the accuracy of the data or while a dispute is being resolved.

Right to Data Portability

You have the right to receive your personal data in a structured, commonly used, machine‑readable format and to transmit it to another controller.

Right to Object

You may object, on grounds relating to your particular situation, to the processing of your data for direct marketing, profiling, or legitimate‑interest purposes.

Right to Withdraw Consent

Where processing is based on consent, you can withdraw that consent at any time without affecting the lawfulness of processing carried out before the withdrawal.

6. How to Exercise Your Rights

To exercise any of the rights listed above, please follow these steps:

Send a written request to gdpr@dailyfoodplates.com. Include your full name, the email address you use on our platform, and a clear description of the right you wish to invoke.
Provide proof of identity (e.g., a scanned government ID) to verify that the request is coming from the data subject.
If you are requesting erasure or restriction, specify the data you want removed or limited.
We will acknowledge receipt of your request within 5 business days and will act on it without undue delay.

7. Response Time

In accordance with Article 12(3) of the GDPR, we will respond to your request within 30 calendar days. In complex cases we may extend this period by an additional two months, but you will be informed of any extension and the reasons for it within the initial 30‑day window.

8. International Transfers

All processing takes place within the European Economic Area (EEA). If a transfer outside the EEA becomes necessary (e.g., for technical support), we will ensure that appropriate safeguards—such as Standard Contractual Clauses—are in place.

9. Changes to This Policy

We may update this GDPR Compliance Policy to reflect changes in law, technology, or our business practices. Any material changes will be posted on this page with a new “Last Updated” date. We encourage you to review the policy regularly.

10. Contact Information

If you have any questions, concerns, or wish to lodge a complaint with a supervisory authority, please contact us at:

Data Protection Officer
DailyFoodPlates
Email: gdpr@dailyfoodplates.com

This policy is provided for informational purposes only and does not constitute legal advice. DailyFoodPlates encourages users to consult a qualified attorney for specific concerns.