GDPR Compliance

Last Updated: 21 sept 2024

At Best Clean Food, we are committed to protecting your privacy and ensuring that your personal data is handled in accordance with the General Data Protection Regulation (GDPR) (EU) 2016/679. This page outlines how we collect, use, and safeguard your personal information, and your rights concerning your data.

1. What is GDPR?

The General Data Protection Regulation (GDPR) is a European Union regulation that aims to give EU residents more control over their personal data. It imposes obligations on organizations that collect or process personal information of individuals within the EU, regardless of where the organization is based.

2. Who We Are

3. What Personal Data We Collect

We collect the following types of personal data when you use our website:

  • Contact Information: Name, email address, and phone number when you contact us via forms or subscribe to our newsletter.
  • Usage Data: Information about how you use our website, including your IP address, browser type, and cookies.
  • Transactional Data: If you purchase any products or services, we collect payment information.

4. How We Use Your Data

We process your data for the following purposes:

  • To provide and improve our services, including sending recipes, newsletters, or updates you have subscribed to.
  • To respond to your inquiries and requests.
  • To fulfill any contracts or agreements made with you, such as processing payments or shipping products.
  • To analyze website performance and improve user experience.

5. Legal Basis for Processing Your Data

We process your personal data based on the following legal grounds:

  • Consent: If you have given clear consent for us to process your data for a specific purpose (e.g., subscribing to a newsletter).
  • Contract: The processing is necessary for the performance of a contract you have with us (e.g., purchasing a product or service).
  • Legitimate Interests: The processing is necessary for our legitimate interests, such as improving our website’s functionality and marketing efforts.

6. Cookies

We use cookies to enhance your browsing experience and collect information about how you use our website. You can control the use of cookies through your browser settings. For more details, please refer to our Cookie Policy.

7. How We Protect Your Data

We take appropriate technical and organizational measures to protect your personal data from unauthorized access, loss, or misuse. These measures include secure data storage, encryption, and limiting access to personal information to only those who need it.

8. Data Retention

We will retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, including complying with legal obligations, resolving disputes, and enforcing our agreements.

9. Your Rights Under GDPR

Under GDPR, you have the following rights concerning your personal data:

  • Right to Access: You have the right to request a copy of the personal data we hold about you.
  • Right to Rectification: You can request that we correct any inaccurate or incomplete data.
  • Right to Erasure (“Right to be Forgotten”): You can request that we delete your personal data, under certain conditions.
  • Right to Restriction of Processing: You can request that we limit the processing of your personal data.
  • Right to Data Portability: You have the right to receive your data in a structured, commonly used format and to transmit it to another organization.
  • Right to Object: You can object to our processing of your personal data for direct marketing or legitimate interest purposes.

To exercise any of these rights, please contact us at [email protected].

10. Third-Party Data Sharing

We do not sell, rent, or trade your personal data. We may share your data with third-party service providers (e.g., payment processors, email service providers) only to the extent necessary to perform services on our behalf. These providers are obligated to keep your information secure and use it solely for the agreed-upon purpose.

11. International Data Transfers

If you are located outside the country where our data servers are based, your information may be transferred to and processed in countries outside the European Economic Area (EEA). We ensure that these transfers comply with GDPR regulations by implementing appropriate safeguards.

12. Data Breach Notification

In the event of a data breach, we will notify affected individuals and relevant authorities within 72 hours if there is a risk to your rights and freedoms under GDPR.

13. Updates to This Policy

We may update this GDPR compliance policy from time to time to reflect changes in our practices or legal requirements. Any updates will be posted on this page, and the “Last Updated” date will be revised accordingly.

14. Contact Us

If you have any questions or concerns about this policy, or if you wish to exercise your GDPR rights, please contact us at: