GDPR

Effective Date: October 7, 2024

At Granny’s Table, we take your privacy seriously and comply with the General Data Protection Regulation (GDPR), which protects the privacy of individuals in the European Economic Area (EEA). This section of our privacy policy outlines your rights as an EEA resident, how we collect, process, and store your personal data, and the steps we take to protect your information.

1. Data Controller

Granny’s Table operates as the data controller for the personal data you provide. This means we determine the purposes and means of processing your data. If you have any questions or concerns regarding how we handle your personal data, you can contact us at:

Email: contact@granystable.com
Website: www.granystable.com

2. Data We Collect

We may collect the following types of personal data:

  • Contact Information: such as your name and email address when you subscribe to our newsletter or contact us directly.
  • Usage Data: including IP address, browser type, time spent on pages, and other analytics to improve the website experience.
  • Cookie Data: to track website preferences and offer personalized content (please refer to our Cookie Policy for more information).

3. Legal Basis for Processing Personal Data

Under GDPR, we process your personal data based on the following legal grounds:

  • Consent: When you voluntarily provide your data (e.g., subscribing to a newsletter or contacting us).
  • Legitimate Interest: For improving our website, analyzing user behavior, and ensuring the security of the site.
  • Contractual Obligations: If we provide a service (such as responding to an inquiry or fulfilling a request), we may need to process your data.
  • Legal Compliance: We may process personal data if required to comply with laws or regulatory obligations.

4. Your Rights Under GDPR

As an EEA resident, you have the following rights regarding your personal data:

  • Right to Access: You can request a copy of the personal data we hold about you.
  • Right to Rectification: You can request corrections to any inaccurate or incomplete data we hold.
  • Right to Erasure (Right to Be Forgotten): You can request that we delete your personal data when it’s no longer necessary for the purposes for which it was collected, or if you withdraw your consent.
  • Right to Restriction of Processing: You can request that we limit the processing of your personal data under certain conditions.
  • Right to Data Portability: You can request that we transfer your personal data to another organization or to you directly, in a commonly used format.
  • Right to Object: You can object to the processing of your data if it is based on legitimate interests or direct marketing.
  • Right to Withdraw Consent: If we process your data based on your consent, you may withdraw that consent at any time without affecting the lawfulness of the processing before your withdrawal.
  • Right to Lodge a Complaint: If you believe that we are not processing your personal data in accordance with GDPR, you have the right to file a complaint with your local data protection authority.

To exercise any of these rights, please contact us at contact@granystable.com. We will respond to your request within 30 days.

5. Data Retention

We will retain your personal data only for as long as necessary to fulfill the purposes for which we collected it or as required by applicable laws and regulations. When we no longer need your data, we will securely delete or anonymize it.

6. Data Transfers

Granny’s Table is based in the United States, and your data may be transferred to and processed in countries outside the EEA. However, we ensure that such transfers are subject to appropriate safeguards in accordance with GDPR, such as ensuring that third-party service providers we use comply with the EU-U.S. Privacy Shield framework or equivalent mechanisms.

7. Data Security

We implement appropriate technical and organizational measures to protect your personal data from unauthorized access, alteration, disclosure, or destruction. While we strive to use industry-standard security measures, please note that no method of data transmission over the internet is 100% secure.

8. Third-Party Data Processors

We may share your personal data with third-party service providers who assist us in operating our website, such as hosting providers, analytics services, or email marketing services. These providers are contractually obligated to protect your data and use it only in accordance with our instructions and the applicable laws, including GDPR.

9. Children’s Privacy

Granny’s Table does not knowingly collect personal information from children under the age of 13. If we discover that we have collected data from a child without consent from a parent or guardian, we will promptly delete it.

10. Contact Us

If you have any questions about this GDPR Privacy Policy or how we handle your data, please reach out to us at:

Email: contact@granystable.com
Website: www.granystable.com