Last Updated: 08/03/2025
This GDPR Privacy Policy applies to users in the European Economic Area (EEA) and supplements our general Privacy Policy. At PlanRecipe.com (“we,” “us,” or “our”), we are committed to protecting and respecting your privacy in compliance with EU General Data Protection Regulation (GDPR).
This policy explains when and why we collect personal information about people who visit our website, how we use it, the conditions under which we may disclose it to others, and how we keep it secure.
Data Controller
For the purpose of the GDPR, the data controller is:
PlanRecipe.com
Email: [email protected]
Lawful Bases for Processing
We will only process your personal data where we have a lawful basis to do so. The lawful bases we rely on are:
- Consent: Where you have given clear consent for us to process your personal data for a specific purpose.
- Contract: Where processing is necessary for the performance of a contract with you or to take steps at your request before entering into a contract.
- Legal obligation: Where processing is necessary for us to comply with the law.
- Legitimate interests: Where processing is necessary for our legitimate interests or the legitimate interests of a third party, provided your rights and interests do not override those interests.
Your Rights Under GDPR
Under the GDPR, you have the following rights regarding your personal data:
- Right to be informed: You have the right to know how your personal data is being processed. This policy provides that information.
- Right of access: You have the right to request a copy of the personal data we hold about you.
- Right to rectification: You have the right to request that we correct any inaccurate or incomplete personal data we hold about you.
- Right to erasure: You have the right to request that we delete your personal data in certain circumstances.
- Right to restrict processing: You have the right to request that we restrict the processing of your personal data in certain circumstances.
- Right to data portability: You have the right to request that we provide you with your personal data in a structured, commonly used, machine-readable format.
- Right to object: You have the right to object to the processing of your personal data in certain circumstances, particularly when we rely on legitimate interests or use it for direct marketing.
- Rights related to automated decision-making: You have the right not to be subject to a decision based solely on automated processing that produces legal effects or significantly affects you.
To exercise any of these rights, please contact us at [email protected]. We will respond to all legitimate requests within one month.
Data Retention
We retain your personal data only for as long as necessary to fulfill the purposes for which we collected it, including for the purposes of satisfying any legal, accounting, or reporting requirements.
To determine the appropriate retention period for personal data, we consider:
- The amount, nature, and sensitivity of the personal data
- The potential risk of harm from unauthorized use or disclosure
- The purposes for which we process the data
- Whether we can achieve those purposes through other means
- The applicable legal requirements
International Data Transfers
If we need to transfer your personal data outside the EEA, we will ensure that:
- The transfer is to a country that has been deemed to provide an adequate level of protection for personal data by the European Commission; or
- Specific contracts approved by the European Commission are in place which give personal data the same protection it has in Europe; or
- For transfers to the United States, the transfer is made to an entity certified under the EU-US Privacy Shield; or
- We have your explicit consent for the transfer.
Cookies and Similar Technologies
We use cookies and similar tracking technologies to track activity on our Website and store certain information. You can instruct your browser to refuse all cookies or to indicate when a cookie is being sent. However, if you do not accept cookies, you may not be able to use some portions of our Service.
For detailed information about the cookies we use and the purposes for which we use them, please see our Cookie Policy.
Data Security
We have implemented appropriate technical and organizational measures to protect your personal data against unauthorized or unlawful processing, accidental loss, destruction, or damage. Unfortunately, no method of transmission over the Internet or method of electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your personal data, we cannot guarantee its absolute security.
Data Breach Procedures
In case of a personal data breach, we will notify the relevant supervisory authority within 72 hours of becoming aware of the breach, where feasible, unless the breach is unlikely to result in a risk to your rights and freedoms. If the breach is likely to result in a high risk to your rights and freedoms, we will also notify you without undue delay.
Data Protection Impact Assessment
Where processing operations are likely to result in a high risk to your rights and freedoms, we will carry out Data Protection Impact Assessments (DPIAs) prior to implementing the processing.
Our Data Protection Officer
Our designated Data Protection Officer can be contacted at:
Email: [email protected]
Complaints
If you are concerned about how we are handling your personal data, please contact us first at [email protected]. You also have the right to lodge a complaint with a supervisory authority in the EU member state where you reside.
Changes to This GDPR Privacy Policy
We may update our GDPR Privacy Policy from time to time. We will notify you of any changes by posting the new policy on this page and updating the “Last Updated” date at the top of this page. You are advised to review this GDPR Privacy Policy periodically for any changes.
Contact Us
If you have any questions about this GDPR Privacy Policy, please contact us at:
Email: [email protected]