GDPR Policy

Last Updated: 21/03/2025

At OnTheStove.com (“we,” “us,” or “our”), we are committed to protecting your personal data and respecting your privacy in compliance with the General Data Protection Regulation (GDPR). This GDPR Policy explains what data we collect, how we process it, and your rights under the GDPR.

1. Data Controller Information

The data controller for OnTheStove.com is:

  • Name: On The Stove
  • Website: OnTheStove.com
  • Email: contact@onthestove.com

2. What Personal Data Do We Collect?

We may collect and process the following types of personal data:

  • Contact Information: Name, email address (and phone number only if you provide it voluntarily, such as via a contact form).
  • Technical Data: IP address, browser type, device information, operating system, referring pages, and usage data collected through cookies and similar technologies.
  • Comments: Information you provide when commenting on blog posts (such as name, email, comment content, and any other fields shown in the comment form).
  • Newsletter Data: Information you provide when subscribing to our newsletter (typically name and email address).
  • Preferences: Your preferences for receiving communications and cookie choices (where applicable).

3. How Do We Use Your Personal Data?

We use your personal data for the following purposes:

  • To operate, maintain, and improve our website and content.
  • To personalize user experience (where applicable).
  • To communicate with you, including responding to messages and sending newsletters if you subscribed.
  • To monitor and analyze website performance and usage.
  • To protect the site, prevent fraud/spam, and enforce our Terms.
  • To comply with legal obligations.

4. Legal Basis for Processing Data

Under the GDPR, we process personal data based on one or more of the following legal grounds:

  • Consent: When you provide explicit consent (e.g., subscribing to a newsletter, accepting non-essential cookies where required).
  • Legitimate Interests: To improve our website, analyze performance, secure the site, and prevent spam/fraud (balanced against your rights).
  • Contractual Necessity: If you request a service or information from us (e.g., contacting us through a form and we need to respond).
  • Legal Obligation: When we must comply with applicable laws and regulatory requirements.

5. Sharing Your Data

We do not sell or rent your personal data. However, we may share your data with trusted third parties for specific purposes, such as:

  • Service Providers: Website hosting, site security, analytics, email newsletter delivery, and performance tools.
  • Advertising & Affiliate Partners: If we run ads or use affiliate links, certain data may be processed via advertising networks or affiliate platforms (depending on your cookie choices and local requirements).
  • Legal Authorities: When required to comply with law, enforce our policies, or protect rights and safety.
  • Third-Party Tools: Such as analytics (e.g., Google Analytics) and advertising networks (e.g., Google AdSense), if used.

We take reasonable steps to ensure these providers handle data securely and, where applicable, under GDPR-compliant terms.

6. How Long Do We Retain Your Data?

We retain personal data only for as long as necessary to fulfill the purposes described in this policy, including:

  • Newsletter subscription data until you unsubscribe (or request deletion).
  • Comments may remain visible indefinitely unless you request removal (where legally applicable and feasible).
  • Technical/analytics data is retained according to the settings of the tools we use and our operational needs.

You may request deletion of your data at any time (see Section 7).

7. Your Rights Under the GDPR

As a data subject, you have the following rights:

  • Right to Access – request a copy of your personal data.
  • Right to Rectification – request correction of inaccurate or incomplete data.
  • Right to Erasure (“Right to be Forgotten”) – request deletion of your personal data.
  • Right to Restrict Processing – request that processing be limited in certain cases.
  • Right to Data Portability – request transfer of your data to another provider (where applicable).
  • Right to Object – object to processing based on legitimate interests and/or direct marketing.
  • Right to Withdraw Consent – withdraw your consent at any time (this does not affect processing already performed).

To exercise any of these rights, contact us at [Your Contact Email].

8. Data Security

We implement appropriate technical and organizational measures to protect your personal data from unauthorized access, disclosure, alteration, or loss. However, no method of transmission or storage is completely secure.

9. International Data Transfers

If your personal data is transferred outside the European Economic Area (EEA), we ensure appropriate safeguards are in place, such as Standard Contractual Clauses (SCCs) or other GDPR-approved mechanisms, depending on the service provider and transfer scenario.

10. Cookies and Tracking Technologies

We use cookies and similar technologies to operate the website, understand traffic, and improve user experience. For more details, please refer to our Cookie Policy (or the cookie section within our Privacy Notice, if combined).

11. Changes to This GDPR Policy

We may update this GDPR Policy from time to time. Any changes will be posted on this page with a revised “Last Updated” date. We encourage you to review it periodically.

12. Contact Us

If you have questions or concerns about this GDPR Policy or your personal data, please contact us:

  • Email: contact@onthestove.com
  • Website: OnTheStove.com
  • Contact Form: [Link or Page Name, if applicable]

By using OnTheStove.com, you acknowledge that you have read and understood this GDPR Policy.