Privacy Policy for mycosykitchen.com

We maintain an unwavering dedication to protecting and preserving all personal data provided by our website visitors and service users, implementing robust and comprehensive security measures throughout our services and operations.

This policy applies where we are acting as a data controller with respect to the personal data of our website visitors and service users; in other words, where we determine the purposes and means of the processing of that personal data. In this role, we are responsible for ensuring the proper handling, processing, and protection of all personal data submitted through our website.

We may process usage data (“usage data”), which comprehensively includes browser type, operating system, page views, navigation paths, timing and duration of visits, click patterns, device information, and referral sources. This information is collected through automatic logging systems, cookies, and analytics tools and may include search queries, interaction patterns, and feature utilization. The source of this data is our analytics tracking system, user devices, and browser interactions. We process this information for several important purposes, including improving website performance, analyzing user behavior, optimizing user experience, and enhancing security measures, which enables us to deliver personalized content, improve navigation, and protect against unauthorized access. The legal basis for this processing is our legitimate interests in monitoring and improving our website services.

We may process account data (“account data”), which comprehensively includes email address, username, password hash, account preferences, notification settings, and account creation date. This information is collected through registration forms, account updates, and user preferences settings and may include billing information, communication preferences, and security settings. The source of this data is direct user input during account creation and management. We process this information for account administration, service delivery, security verification, and communication purposes, which enables us to authenticate users, provide account-specific services, and maintain account security. The legal basis for this processing is the performance of a contract between you and us and/or taking steps, at your request, to enter into such a contract.

We may process profile data (“profile data”), which comprehensively includes name, dietary preferences, cooking interests, saved recipes, favorite cuisines, and cooking skill level. This information is collected through profile creation forms, preference settings, and user interactions and may include recipe ratings, cooking notes, and meal planning preferences. The source of this data is user-provided information and interaction history. We process this information for personalizing user experience, recommending relevant content, facilitating community features, and improving service delivery, which enables us to provide tailored recipe suggestions, customized content, and enhanced user interactions. The legal basis for this processing is our legitimate interests in providing personalized services and improving user experience.

Your Rights:

Right to Access: You have the right to access your personal data, which means you can request a copy of all information we hold about you and confirm how we are using it. This includes the ability to receive confirmation of data processing, obtain copies of your personal data, and verify the lawfulness of processing. To exercise this right, you can submit a formal data access request through our website or contact our data protection officer directly. We will respond within 30 days and may require government-issued identification, proof of address, and account verification to verify your identity.

Right to Rectification: You have the right to correct any inaccurate or incomplete personal data we hold about you. This includes the ability to update personal information, correct errors in your data, and supplement incomplete information. To exercise this right, you can access your account settings or submit a correction request through our support system. We will process your request within 15 days and may require account verification, supporting documentation, and specific details about the information to be corrected.

Right to Erasure: You have the right to request the deletion of your personal data when there is no compelling reason for its continued processing. This includes the ability to remove account information, delete stored preferences, and withdraw processing consent. To exercise this right, you can submit an erasure request through our dedicated privacy portal or contact our support team. We will respond within 30 days and may require password confirmation, identity verification documents, and written confirmation of the erasure request.

Right to Restrict Processing: You have the right to limit how we use your personal data if you have concerns about its accuracy or our processing methods. This includes the ability to pause data processing, temporarily restrict data usage, and limit automated processing. To exercise this right, you can submit a processing restriction request through our privacy settings or contact our data protection team. We will respond within 15 days and may require account authentication, specific processing concerns documentation, and verification of identity.

Right to Data Portability: You have the right to receive your personal data in a structured, commonly used format and transmit it to another service provider. This includes the ability to download your data, transfer information between services, and receive data in machine-readable format. To exercise this right, you can use our data export tool or submit a portability request through our website. We will respond within 30 days and may require two-factor authentication, account ownership verification, and specific format preferences.Data Processing and Security Measures

We process Service Data which includes user account details, profile information, and service preferences. This processing involves automated collection and analysis, enabling us to provide personalized cooking recommendations and recipe management. For example, in the context of recipe creation and meal planning, this includes dietary preferences, cooking skill levels, and kitchen equipment inventory. The legal basis for this processing is legitimate interests, specifically to provide and improve our culinary services.

We process Technical Data which includes device information, IP addresses, browser types, and system configurations. This processing involves automated logging and analysis, enabling us to optimize website performance and ensure compatibility. For example, this includes adapting recipe displays for different devices and tracking cooking timer usage. The legal basis for this processing is legitimate interests in maintaining service functionality.

We process Communication Data which includes email correspondence, chat messages, and support tickets. This processing involves storage and analysis of communications, enabling us to provide customer support and service updates. For example, this includes recipe inquiries, cooking advice requests, and technical support communications. The legal basis for this processing is contract performance and legitimate interests.

We process Transaction Data which includes purchase histories, payment information, and subscription details. This processing involves secure payment processing and order fulfillment, enabling us to manage premium recipe subscriptions and cooking class bookings. The legal basis for this processing is contract performance and legal obligations.

We process Preference Data which includes cooking preferences, dietary restrictions, and personalization settings. This processing involves analysis and storage of user preferences, enabling us to provide tailored recipe recommendations and cooking guidance. The legal basis for this processing is consent and legitimate interests.

Security Measures

Our comprehensive encryption protocols ensure end-to-end protection of your data, incorporating industry-standard algorithms and regular security updates to maintain data integrity. This includes regular security assessments and penetration testing by qualified professionals.

We implement multi-layered security infrastructure, including advanced firewalls and intrusion detection systems that continuously monitor for and prevent unauthorized access attempts. This infrastructure undergoes regular updates and enhancements.

Access to personal data is strictly controlled through role-based permissions, multi-factor authentication, and detailed access logs. We maintain comprehensive audit trails of all data access and modifications.

Our continuous monitoring systems provide real-time threat detection and automated response protocols, ensuring immediate action against potential security threats.

We maintain comprehensive backup procedures with encrypted offsite storage and regular recovery testing, ensuring data availability and integrity.

All staff undergo regular security awareness training and must comply with detailed data protection protocols, including specific training for handling sensitive data.

International Data Transfers

We may transfer your personal data to countries outside your jurisdiction. These transfers are protected by appropriate safeguards, including Standard Contractual Clauses, Binding Corporate Rules, and Privacy Shield certifications. Each international transfer is conducted under strict protocols that ensure:
– Adequate data protection standards
– Compliant processing procedures
– Enforceable data subject rights
– Effective legal remedies

International transfers are protected by ISO 27001, GDPR standards, and CCPA requirements, ensuring compliance with global privacy regulations. We implement additional measures including:
– Regular compliance audits
– Data protection impact assessments
– Documented transfer mechanisms
– Continuous monitoring procedures

Regarding international transfers, you maintain specific rights including:
– Right to information about transfers
– Right to object to transfers
– Right to withdraw consent
– Right to data protection guarantees

Data Retention

We maintain specific retention periods for different data categories:

Account Information: Retained for the duration of account activity plus 24 months for account recovery purposes
Usage Data: Stored for 12 months to analyze cooking patterns and improve recommendations
Transaction Records: Kept for 7 years to comply with tax and financial regulations
Communication History: Maintained for 36 months to ensure continuity of service
Technical Logs: Preserved for 6 months for security and performance optimization

These retention periods are determined by:
– Legal requirements
– Business purposes
– Technical necessities
– User preferences

Special circumstances affecting retention:
– Legal obligations
– Dispute resolution
– Security investigationsCookie Policy for mycosykitchen.com

Essential cookies serve critical functions for basic website operations on mycosykitchen.com. These cookies process authentication data, security tokens, and session information to enable core functionality. In our context, these cookies maintain your secure login state while browsing recipes and saving favorites. We use them specifically for user authentication, maintaining security measures, managing basic site operations, handling session management, and ensuring technical stability.

Functional cookies enhance your browsing experience by remembering your preferences on mycosykitchen.com. They process data about your chosen settings to enable a more personalized experience. These cookies store your language preferences, deliver region-specific content, customize the user interface, optimize features, and maintain your personalized settings for future visits.

Analytics cookies help us understand how visitors interact with mycosykitchen.com. They collect anonymous information about page interactions, navigation patterns, feature usage, session duration, and user preferences. This data helps us improve our content and user experience without compromising your privacy.

Performance cookies assess and optimize website operation by monitoring site speed, identifying technical issues, optimizing content delivery, analyzing user experience, and tracking system performance. These cookies ensure mycosykitchen.com operates efficiently and reliably for all users.

Cookie Management

You can control your cookie preferences through your browser settings, our cookie consent tool, privacy preferences center, and account settings. We respect your right to choose which cookies you accept.

GDPR Compliance

For EU residents, we maintain strict data protection standards including explicit consent mechanisms, data minimization practices, purpose limitation protocols, storage limitations, and complete processing transparency.

CCPA Compliance

California residents are entitled to know about personal information collected, request data deletion, opt-out of data sales, receive non-discriminatory service, and access collected information.

COPPA Compliance

For users under 13, we implement strict age verification requirements, parental consent procedures, limited data collection practices, special protection measures, and comprehensive parental access rights.

Updates and Changes

Our policy maintenance includes regular review procedures, user notifications for significant changes, consent renewal when required, clear change documentation, and continuous compliance monitoring.

Contact Information

For privacy-related inquiries:
Primary Contact: [email protected]
Response Time: Within 48 hours
Verification Required: For data-related requests
Available Support: Privacy concerns, data requests, rights exercise

This policy was created specifically for mycosykitchen.com and covers all associated services within the culinary and recipe sharing industry.