GDPR Compliance Policy – QuickMumdishes
QuickMumdishes (“we”, “us”, “our”) is committed to protecting the privacy of your personal data and to ensuring that your rights under the General Data Protection Regulation (GDPR) are respected. This policy explains what personal data we collect, why we collect it, how we protect it, and how you can exercise your rights.
Last Updated: April 03, 2026
1. What Personal Data We Collect
- Email addresses – Collected when you sign up for our newsletter, create an account, or place an order.
- Cookies and similar tracking technologies – Used to remember your preferences, analyse site usage, and personalise content.
- Analytics data – Collected via Google Analytics and Matomo to understand how visitors interact with the website.
2. How We Use Your Data
We process your personal data for the following purposes:
- To provide and improve our services, including sending newsletters and order confirmations.
- To comply with legal obligations and enforce our terms of service.
- To conduct analytics and marketing research, provided we have your consent where required.
3. Legal Basis for Processing
Our legal basis for processing your personal data includes:
- Consent – When you explicitly opt‑in to receive marketing communications.
- Legitimate Interest – To improve the user experience, enhance site security, and analyse traffic patterns.
4. How We Protect Your Data
We implement a range of technical and organisational measures to safeguard your personal data:
- SSL/TLS encryption – All data transmitted between your browser and our servers is encrypted.
- Secure servers – Hosted on reputable cloud providers with regular security audits.
- Access controls – Only authorised personnel have access to personal data, and they are bound by confidentiality agreements.
- Data minimisation and retention – We retain data only as long as necessary for the purposes stated and then securely delete or anonymise it.
5. Your GDPR Rights
Right to Access
You may request a copy of the personal data we hold about you.
Right to Rectification
You can correct any inaccurate or incomplete information.
Right to Erasure
You may request deletion of your personal data.
Right to Restrict Processing
You can limit how we use your data.
Right to Data Portability
You can receive your data in a structured, machine‑readable format.
Right to Object
You may object to processing for direct marketing or profiling.
Right to Withdraw Consent
You can withdraw consent at any time, without affecting the lawfulness of processing carried out before withdrawal.
6. How to Exercise Your Rights
You can exercise any of the rights listed above by contacting us at [email protected]. Please include:
- Your full name and contact information.
- A clear statement of the right you wish to exercise.
- Any relevant details that will help us locate your data (e.g., email address used for registration).
We will respond to your request within 30 days of receipt, as required by GDPR. If we need additional time, we will inform you of the reason and the expected completion date.
7. Contact Information
If you have any questions about this policy or your personal data, please contact our Data Protection Officer:
Email: [email protected]
8. Changes to This Policy
We may update this policy from time to time. Any changes will be posted on this page with a revised “Last Updated” date. We encourage you to review the policy periodically to stay informed about how we protect your privacy.