GDPR Compliance Policy

Effective Date: December 01, 2025

QuickMumDishes (https://quickmumdishes.com) respects the privacy of its users and is committed to protecting personal data in accordance with the EU General Data Protection Regulation (Regulation (EU) 2016/679 – “GDPR”). This policy explains what personal data we collect, why we process it, how we protect it, and the rights you enjoy under the GDPR.

1. Data We Collect

We only collect personal data that is necessary for the legitimate operation of QuickMumDishes and to improve the user experience. The categories of data we process include:

• Email addresses: Provided voluntarily when you subscribe to our newsletter, request a recipe, or contact us.
• Cookies and similar tracking technologies: Used to remember your preferences, analyse site usage, and deliver personalised content.
• Analytics data: Aggregated information such as page views, click‑through rates, and device/browser details collected through services like Google Analytics.

2. How We Use & Protect Your Data

Purpose of processing:

• Sending newsletters, updates, and promotional offers you have opted‑in to receive.
• Improving website functionality, performance, and user experience.
• Responding to enquiries and providing customer support.
• Conducting statistical analysis to understand audience interests.

Security measures:

• All data transmitted between your browser and our servers is encrypted with SSL/TLS (HTTPS).
• Our servers are hosted in secure data centres with regular security audits, firewalls, and intrusion‑detection systems.
• Access to personal data is restricted to authorised personnel only, and each employee is required to sign confidentiality agreements.
• We retain personal data only for as long as it is necessary for the purposes described in this policy. Email addresses are deleted automatically after a period of inactivity of 24 months unless you have opted to remain subscribed.

3. Legal Basis for Processing

Our processing activities are grounded in the following lawful bases under Article 6 of the GDPR:

• Consent (Article 6(1)(a)): When you voluntarily provide your email address and tick the “I agree to receive newsletters” box, you give us explicit consent to process that data for marketing communications.
• Legitimate interests (Article 6(1)(f)): The use of cookies and analytics data is necessary for the legitimate interest of improving our website’s performance, security, and relevance to users.

4. Your GDPR Rights

Under the GDPR, you are entitled to the following rights. Each right is accompanied by a Bootstrap Icon for quick visual reference.

• Right to Access – You may request confirmation that we are processing your personal data and obtain a copy of the data we hold about you.
• Right to Rectification – If any of your personal data is inaccurate or incomplete, you have the right to have it corrected without undue delay.
• Right to Erasure (Right to be Forgotten) – You may ask us to delete your personal data where there is no compelling reason for continued processing.
• Right to Restrict Processing – You can request that we limit the way we use your data while we verify the accuracy of the information or while a dispute is being resolved.
• Right to Data Portability – You may receive your personal data in a structured, commonly used, machine‑readable format and transmit it to another controller.
• Right to Object – You can object, on grounds relating to your particular situation, to the processing of your data for direct marketing or for purposes based on legitimate interests.
• Right to Withdraw Consent – Where processing is based on consent, you may withdraw that consent at any time, without affecting the lawfulness of processing based on consent before its withdrawal.

5. How to Exercise Your Rights

To exercise any of the rights listed above, please follow these steps:

1. Send a written request to our Data Protection Officer at gdpr@quickmumdishes.com. Include your full name, the email address you used on QuickMumDishes, and a clear description of the right you wish to invoke.
2. For verification purposes, you may be asked to provide additional information (e.g., a copy of a government‑issued ID) to confirm your identity.
3. We will acknowledge receipt of your request within 5 business days and aim to fulfil the request within the statutory 30‑day period. In complex cases, we may extend the deadline by up to 2 additional months, but we will inform you of any extension and the reasons for it.
4. If your request is denied or only partially fulfilled, we will provide a clear explanation of the reasons, referencing the relevant GDPR articles.

6. Response Time

All requests concerning your GDPR rights will be processed within 30 calendar days of receipt. This timeframe is in line with Article 12(3) of the GDPR. As noted above, extensions are possible only when the request is particularly complex or when we receive a large number of requests, and we will always communicate any extension to you promptly.

7. International Transfers

QuickMumDishes does not transfer personal data outside the European Economic Area (EEA). All processing takes place on servers located within the EEA, ensuring that the level of protection afforded by the GDPR is maintained.

8. Updates to This Policy

We review this GDPR Compliance Policy regularly and may amend it to reflect changes in legislation, our data‑processing activities, or best‑practice standards. The “Last Updated” date at the top of the document indicates the most recent revision.

9. Contact Information

If you have any questions, concerns, or wish to exercise any of your rights, please contact our Data Protection Officer:

Thank you for trusting QuickMumDishes with your personal data. We remain committed to safeguarding your privacy and complying fully with the GDPR.