GDPR Compliance Policy

Effective date: December 01, 2025

Mom Recipe Ideas (“we”, “our”, “us”) operates the website momrecipeideas.com. We are committed to protecting the personal data of our visitors, subscribers, and users in accordance with the General Data Protection Regulation (EU) 2016/679 (GDPR). This policy explains what personal data we collect, why we process it, how we protect it, and the rights you enjoy under the GDPR.

1. Data We Collect

We collect and process the following categories of personal data:

• Email addresses: When you sign up for our newsletter, download a free recipe ebook, or submit a comment.
• Cookies and similar technologies: We use first‑party and third‑party cookies to remember your preferences, keep you logged in (if applicable), and analyse site usage.
• Analytics data: Aggregated information such as pages visited, time spent on each page, referral source, and device/browser type. This data is collected via Google Analytics and is anonymised where possible.

2. Legal Basis for Processing

Our processing activities are based on the following lawful grounds:

• Consent (Article 6(1)(a)): When you voluntarily provide your email address to receive newsletters or promotional material, you give us explicit consent to process that data for the purpose of communication.
• Legitimate interests (Article 6(1)(f)): The use of cookies and analytics is necessary for improving the functionality, security, and performance of our website, which constitutes a legitimate interest of Mom Recipe Ideas.

3. How We Protect Your Data

We have implemented technical and organisational measures to safeguard personal data:

• All data transmitted between your browser and our servers is encrypted with SSL/TLS (HTTPS).
• Our servers are hosted in secure data centres that employ firewalls, intrusion detection systems, and regular security audits.
• Access to personal data is restricted to authorised personnel who need it to perform their duties.
• We retain email addresses only for as long as you remain subscribed or until you request deletion; analytics data is retained for a maximum of 24 months in an aggregated, non‑identifiable form.

4. Your GDPR Rights

Under the GDPR you have the following rights concerning your personal data. Each right is accompanied by a Bootstrap icon for quick reference.

• Right to Access – You may request a copy of the personal data we hold about you, together with information about how we process it.
• Right to Rectification – If any of your personal data is inaccurate or incomplete, you can ask us to correct or complete it without undue delay.
• Right to Erasure (Right to be Forgotten) – You may request the deletion of your personal data where there is no compelling reason for us to retain it.
• Right to Restrict Processing – You can ask us to limit the way we use your data, for example while a dispute about its accuracy is being resolved.
• Right to Data Portability – You have the right to receive your personal data in a structured, commonly used, machine‑readable format and to transmit it to another controller.
• Right to Object – You may object, on grounds relating to your particular situation, to the processing of your data for direct marketing or for purposes of legitimate interests.
• Right to Withdraw Consent – Where processing is based on your consent, you may withdraw that consent at any time without affecting the lawfulness of processing based on consent before its withdrawal.

5. How to Exercise Your Rights

To exercise any of the rights listed above, please contact us using the details provided in Section 8. In your request, include:

• Your full name and, if applicable, the email address you used with us.
• A clear description of the right you wish to invoke (e.g., “I would like to receive a copy of all personal data you hold about me”).
• Any additional information that will help us identify your data (e.g., date of subscription, IP address used at the time of registration).

We will verify your identity to protect your privacy and will respond within 30 calendar days, as required by the GDPR. If your request is complex or numerous, we may extend the deadline by up to an additional two months, but we will inform you of the extension within the initial 30‑day period.

6. Data Retention

We retain personal data only for as long as necessary:

• Email addresses: Retained until you unsubscribe or request deletion. Inactive addresses are automatically removed after 24 months of non‑engagement.
• Cookies: Session cookies are deleted when you close your browser. Persistent cookies have a maximum lifespan of 12 months, after which they are automatically cleared.
• Analytics data: Stored in an aggregated form for up to 24 months for trend analysis; raw IP addresses are anonymised after 30 days.

7. International Transfers

All personal data is processed on servers located within the European Economic Area (EEA). If a transfer outside the EEA is ever required (e.g., for a third‑party service), we will ensure that appropriate safeguards—such as Standard Contractual Clauses—are in place.

8. Contact Information

If you have any questions about this policy, wish to exercise your GDPR rights, or need further assistance, please contact our Data Protection Officer at:

Email: gdpr@momrecipeideas.com

9. Changes to This Policy

We review this GDPR Compliance Policy regularly. Any material changes will be posted on this page with an updated “Last Updated” date. Continued use of the website after such changes constitutes acceptance of the revised policy.

---

Mom Recipe Ideas respects your privacy and is committed to maintaining the highest standards of data protection.