GDPR Compliance Policy

Effective Date: December 01, 2025

1. Introduction

mumdishdaily (https://mumdishdaily.com) is committed to protecting the privacy and personal data of its users, visitors, and subscribers in accordance with the EU General Data Protection Regulation (GDPR) (Regulation (EU) 2016/679). This policy explains what personal data we collect, the legal bases for processing that data, how we safeguard it, and how you can exercise your GDPR‑related rights.

2. Data We Collect

We collect and process the following categories of personal data:

Email address – provided when you subscribe to our newsletter, comment on a post, or contact us.
Cookies and similar tracking technologies – used to remember your preferences, analyse site usage, and deliver personalised content.
Analytics data – aggregated information such as IP address, device type, browser, pages visited, and time spent on the site, collected through Google Analytics and other services.

3. Legal Basis for Processing

We rely on the following lawful bases to process your personal data:

Consent (Article 6(1)(a)) – when you voluntarily provide your email address to receive newsletters or marketing communications. You may withdraw consent at any time (see Section 7).
Legitimate interests (Article 6(1)(f)) – for activities such as website security, fraud prevention, and improving the user experience through analytics.
Performance of a contract (Article 6(1)(b)) – when you request a specific service (e.g., a custom recipe request) that requires us to process your data.

4. How We Protect Your Data

We implement a range of technical and organisational measures to ensure the confidentiality, integrity, and availability of personal data:

All data transmission is encrypted using SSL/TLS (HTTPS) to prevent interception.
Our servers are hosted in secure data centres with regular security audits, firewalls, and intrusion‑detection systems.
Access to personal data is restricted to authorised personnel only, and each employee signs a confidentiality agreement.
Data is retained only for as long as necessary: newsletter addresses are kept until you unsubscribe, analytics data is anonymised after 12 months, and cookies are deleted according to their individual lifespans.

5. Your GDPR Rights

Under the GDPR, you have the following rights with respect to your personal data. Each right is illustrated with a Bootstrap 5 icon for quick reference.

Right to Access

You may request a copy of the personal data we hold about you, together with information about how we process it.

Right to Rectification

If any of your data is inaccurate or incomplete, you can ask us to correct or complete it without undue delay.

Right to Erasure (Right to be Forgotten)

You may request that we delete your personal data, provided there is no overriding legal obligation to retain it.

Right to Restrict Processing

You can ask us to limit the processing of your data while we verify the accuracy of the information or while a dispute is being resolved.

Right to Data Portability

You have the right to receive your personal data in a structured, commonly used, machine‑readable format and to transmit it to another controller.

Right to Object

You may object to the processing of your data for direct marketing, scientific/historical research, or legitimate‑interest based activities.

Right to Withdraw Consent

Where processing is based on consent, you can withdraw that consent at any time, without affecting the lawfulness of processing before the withdrawal.

6. How to Exercise Your Rights

To exercise any of the rights listed above, please contact our Data Protection Officer (DPO) via the email address below. In your request, include:

Your full name and the email address you used with mumdishdaily.
A clear description of the right you wish to invoke (e.g., “I would like to exercise my right to erasure”).
Any additional information that will help us verify your identity (e.g., a recent subscription confirmation email).

We will acknowledge receipt of your request within 5 business days and aim to provide a substantive response within 30 calendar days**, as required by the GDPR. If the request is complex or we need additional information, we may extend the period by up to two further months, notifying you of the extension and the reasons for it.

7. Data Retention

We retain personal data only for the period necessary to fulfil the purposes for which it was collected:

Newsletter subscriptions: retained until you unsubscribe or request deletion.

Analytics data: stored in an anonymised form for a maximum of 12 months.

Cookies: session cookies are deleted when the browser is closed; persistent cookies respect the lifespan defined at the time of setting (typically 30‑365 days).

8. International Data Transfers

All personal data is processed on servers located within the European Economic Area (EEA). If a transfer outside the EEA becomes necessary (e.g., for third‑party analytics), we will ensure an adequate level of protection through standard contractual clauses or other GDPR‑approved mechanisms.

9. Contact Information

If you have any questions, concerns, or wish to exercise your GDPR rights, please contact our Data Protection Officer:

Data Protection Officer (DPO)
Email: gdpr@mumdishdaily.com

10. Changes to This Policy

We review this GDPR Compliance Policy regularly. Any material changes will be posted on this page with an updated “Last Updated” date. Continued use of the site after such changes constitutes acceptance of the revised policy.

Last Updated: December 01, 2025