PRIVACY POLICY
1. Introduction
At My Cosy Kitchen (“we”, “us”, or “our”), accessible via https://mycosykitchen.com, we deeply value your privacy. This Privacy Policy outlines our steadfast commitment to protecting your personal data and your rights under applicable privacy laws, including but not limited to the General Data Protection Regulation (EU) 2016/679 (“GDPR”) and the California Consumer Privacy Act (“CCPA”). We are dedicated to implementing robust data protection practices and fostering a transparent digital experience for our users.
2. Scope Of Policy and Data Controller Role
This Privacy Policy applies to all visitors, users, and others who interact with the website mycosykitchen.com. For the purposes of GDPR and relevant data protection legislation, My Cosy Kitchen is the “Data Controller” of your personal information as collected through this platform.
If you are located in the European Economic Area (EEA), United Kingdom, or California, this policy informs you about your personal data rights and provides transparency on how we collect, use, store, and safeguard your information.
3. Categories of Data Processed
We collect and process a variety of personal data, grouped as follows:
a. Usage Data
This includes information automatically collected through your interactions with our website, such as IP address, browser type, operating system, referral URLs, pages visited, and session duration. This helps us understand how users engage with mycosykitchen.com and improve the performance and experience of our website.
b. Account Data
Includes details provided during account creation or registration, such as your full name, residential or delivery address, telephone number, and email address.
c. Profile Data
Captured through user interactions and preferences, this includes saved recipes, wish lists, purchase history, and behavior patterns associated with your profile.
d. Communication Data
Data derived from any contact initiated by you, such as customer support messages, contact form submissions, and correspondence history with our support team at [email protected].
e. Technical Data
Includes device type, device identifier, time zone, browser plug-in types, screen resolution, and system configuration. This enables us to ensure functionality and optimize technical compatibility.
f. Transaction Data
Comprises details of product or service purchases, billing and shipping information, and partial or full payment information (processed securely via third-party payment processors; we do not store full payment card details).
g. Preference Data
Encompasses your preferences regarding marketing communications, product interests, and your consent status for newsletters or promotional materials.
4. Legal Bases for Processing
We process your data based on the following legal grounds as applicable:
– Consent: Where you have provided explicit permission (e.g., signing up for newsletters or accepting cookies).
– Contractual Necessity: When data processing is essential for performing a contract or pre-contractual measures.
– Legitimate Interests: To optimize our services, enhance user experience, prevent fraud, and improve our website’s performance.
– Legal Obligation: When required to comply with legal or regulatory obligations.
5. Your Rights
As a data subject, you are entitled to the following rights under applicable privacy laws:
– Right of Access: You may request a copy of the personal data we hold about you.
– Right to Rectification: Correct inaccuracies in your personal information.
– Right to Erasure: Request deletion of your data, under certain lawful grounds.
– Right to Restriction: Request limitation of processing in specific circumstances.
– Right to Data Portability: Receive your data in a structured, machine-readable format and transmit it to another controller.
To exercise these rights, please contact us at [email protected]. We will endeavor to respond promptly and in accordance with applicable law.
6. Security Measures
We employ industry-standard safeguards to secure your data, including:
– End-to-end encryption of data in transit and at rest.
– Strict access controls and authentication protocols.
– Routine data backups and integrity checks.
– Staff training and confidentiality obligations.
– Security audits of underlying infrastructure and third-party services.
While no system is impenetrable, we commit to continuously evolving our security measures to adapt to emerging threats.
7. International Transfers
Your data may be transferred to and processed in jurisdictions outside your country of residence, including countries not recognized by the European Commission or other regulators as ensuring an adequate level of data protection. In such cases, we implement Standard Contractual Clauses (SCCs), Data Processing Agreements, or other appropriate safeguards in compliance with GDPR and similar frameworks.
8. Data Retention
We retain your personal data no longer than is necessary for the purposes stated in this Privacy Policy. The following outlines typical retention periods:
– Usage and Technical Data: 26 months
– Account and Profile Data: As long as your account is active or required pursuant to our legal obligations
– Transaction Data: 7 years for financial and tax compliance
– Communication Data: Retained for 3 years from final correspondence
– Preference Data: Until your consent is withdrawn or the data is deemed irrelevant
Data may be retained longer where legally required or for legitimate business purposes, such as fraud prevention.
9. Cookie Policy
We use cookies to ensure the proper functionality of mycosykitchen.com and to enhance user experience. Types of cookies we utilize include:
– Essential Cookies: Necessary for site operation, such as session maintenance and login functionality.
– Functional Cookies: Enable personalization and user preference storage.
– Analytics Cookies: Allow us to analyze traffic and interactions via services such as Google Analytics.
– Performance Cookies: Monitor website performance and improve site speed and responsiveness.
10. Cookie Management and Compliance
Users can manage their cookie preferences directly through our website banner or browser settings. Consent is obtained for non-essential cookies in compliance with GDPR. California residents can opt out of certain cookies classified as “sales” under CCPA through our “Do Not Sell My Personal Information” link accessible on the site.
11. Children’s Privacy
mycosykitchen.com is not directed toward children under the age of 13. We do not knowingly collect personal information from anyone under 13 years of age. If we become aware that such data has been inadvertently collected, we will take prompt steps to delete it.
12. Policy Updates
We reserve the right to update this Privacy Policy to reflect changes in our practices or relevant regulations. Any material changes will be communicated via our website or direct notification when feasible. We encourage you to review this Privacy Policy periodically to remain informed.
13. Contact
If you have any questions, requests, or concerns regarding this Privacy Policy or your personal data, you may reach us at:
Email: [email protected]
By using mycosykitchen.com, you acknowledge that you have read and understood this Privacy Policy. We take your privacy seriously and remain committed to full compliance with GDPR, CCPA, and other applicable data protection laws.