GDPR Policy

Effective Date: March 13, 2026

At SimplyFreshMeal.com (“we,” “our,” or “us”), protecting your personal data and respecting your privacy are important to us.
This GDPR Policy explains how we collect, process, and store personal data from visitors in compliance with the General Data Protection Regulation (EU) 2016/679 (“GDPR”).

1. Who We Are (Data Controller)

Website: https://simplyfreshmeal.com/
Owner & Data Controller: Sandra, Founder of Simply Fresh Meal
Email: [email protected]

SimplyFreshMeal.com is responsible for the personal data collected through this Website.

2. What Personal Data We Collect

We may process the following categories of personal data:

Contact Data
Name and email address (for newsletter subscriptions, comments, or contact forms).

Technical Data
IP address, browser type, operating system, referring website, and approximate geographic location.

Usage Data
Pages visited, time spent on pages, click behavior, and navigation patterns.

Device Data
Information about the device used to access the website such as desktop, tablet, or mobile.

Some of this information is collected automatically through cookies and analytics tools.

3. Why We Collect Your Data

We collect personal data in order to:

  • Send newsletters, recipes, or updates (only with your consent)
  • Respond to comments, messages, and inquiries
  • Improve website performance and user experience
  • Prevent spam, fraud, and security threats
  • Analyze website traffic and user behavior
  • Personalize content and browsing experience (when cookie consent is provided)

4. Legal Bases for Processing

Under GDPR, we process personal data using the following legal bases:

Consent
For email newsletter subscriptions and cookie preferences.

Legitimate Interest
For website analytics, security monitoring, and improving site functionality.

Legal Obligation
When required to comply with applicable laws or regulations.

Contractual Necessity
When processing is required to fulfill a request or service initiated by the user.

5. Your Rights Under GDPR

If you are located in the European Union (EU) or European Economic Area (EEA), you have the right to:

  • Access your personal data
  • Request correction of inaccurate data
  • Request deletion of your personal data (“Right to be Forgotten”)
  • Restrict or object to certain data processing
  • Withdraw consent at any time (such as unsubscribing from emails)
  • Request a copy of your personal data in a portable format

To exercise any of these rights, please contact us at:
[email protected]

We will respond to requests within the timeframes required by GDPR.

6. Data Retention

We retain personal data only for as long as necessary to fulfill the purposes described in this policy or to comply with legal obligations.

You may request deletion of your personal data at any time.

7. Sharing Your Data

We do not sell or rent personal data.

However, limited information may be shared with trusted service providers that help operate the Website, including:

  • Email marketing platforms (such as MailerLite or ConvertKit)
  • Website hosting providers
  • Analytics services (such as Google Analytics)
  • Legal or regulatory authorities when required by law

These service providers are required to comply with applicable data protection regulations.

8. Cookies and Tracking Technologies

We use cookies and similar technologies to enhance user experience and analyze website traffic.

Essential Cookies
Required for basic website functionality.

Non-Essential Cookies
Used for analytics, personalization, and affiliate tracking (only with user consent).

You can control cookie settings through your browser or via the website’s cookie consent banner.

9. International Data Transfers

Because our website and service providers may operate globally, personal data may be transferred outside the European Economic Area (EEA), including to the United States.

To protect your data, we rely on safeguards such as:

  • Standard Contractual Clauses (SCCs) approved by the European Commission
  • Data Processing Agreements (DPAs) with service providers
  • Secure encrypted data transfers (HTTPS / SSL)

10. Data Security

We implement reasonable security measures to protect personal data, including:

  • HTTPS / SSL encryption
  • Secure hosting environment
  • Restricted administrative access
  • Regular security updates and monitoring

While we take strong precautions, no online system can guarantee absolute security.

11. Contact Us

If you have questions regarding this GDPR Policy or your personal data, please contact us:

📧 Email: [email protected]
🌐 Contact Page: https://simplyfreshmeal.com/contact/