GDPR Compliance Policy – Yummydinnerhub

Last Updated: April 03, 2026

Yummydinnerhub (“we”, “our”, “us”) is committed to protecting your personal data and respecting your privacy rights. This policy explains how we collect, use, store and share your information in accordance with the European Union General Data Protection Regulation (GDPR) and the Data Protection Act 2018. By accessing or using our website (https://yummydinnerhub.com) you acknowledge that you have read and understood this policy.

1. What Personal Data We Collect

Email addresses: When you sign up for newsletters, create an account, or place an order, we collect your email address to provide you with updates, promotions, and support.

Cookies and tracking technologies: We use first‑party cookies to remember your preferences and to enhance your browsing experience. Third‑party cookies are employed for analytics, advertising, and social media integration.

Analytics data: Tools such as Google Analytics and Hotjar collect anonymous usage data (IP addresses, device type, pages visited) to improve our website and services.

2. How We Protect Your Data

SSL/TLS encryption: All data transmitted between your browser and our servers is encrypted using industry‑standard SSL/TLS protocols, ensuring confidentiality and integrity.

Secure servers and access controls: We host our data on secure, fire‑walled servers with multi‑factor authentication and regular penetration testing. Only authorised staff with a legitimate need to access data can do so.

Limited retention: Personal data is retained only for as long as necessary to fulfil the purposes for which it was collected or to comply with legal obligations. For example, email addresses are kept for the duration of your subscription unless you request deletion.

3. Legal Basis for Processing

Consent: By providing your email address or interacting with our site, you explicitly consent to the processing of your personal data for the purposes outlined in this policy.

Legitimate interest: We process data that is necessary to improve our services, provide personalised content, and conduct market research. We have conducted a legitimate interest assessment to ensure that our interests do not override your rights.

4. Your GDPR Rights

Under the GDPR, you have the following rights regarding your personal data. Each right is illustrated with a Bootstrap icon for quick reference.

Right to Access

You may request a copy of all personal data we hold about you. We will provide this information in a structured, commonly used format within 30 days of your request.

Right to Rectification

If any of your personal data is inaccurate or incomplete, you can ask us to correct it. We will update or complete the data promptly.

Right to Erasure

Also known as the “right to be forgotten”, you can request that we delete your personal data. We will remove it unless a legal obligation requires retention.

Right to Restrict Processing

You may request that we limit the use of your personal data (e.g., for a period of time or for specific purposes). We will comply while ensuring our legal obligations are met.

Right to Data Portability

You can obtain your personal data in a machine‑readable format and transfer it to another controller. We will provide the data in a commonly used format (e.g., CSV, JSON) within 30 days.

Right to Object

You may object to the processing of your data for direct marketing or profiling purposes. Upon objection, we will stop processing unless we can demonstrate compelling legitimate grounds.

Right to Withdraw Consent

If you previously consented to the use of your data, you can withdraw that consent at any time. Withdrawal does not affect the lawfulness of processing based on consent before withdrawal.

5. How to Exercise Your Rights

To exercise any of the rights listed above, please contact our Data Protection Officer at [email protected]. Include the following information to help us identify your request quickly:

Your full name and contact details
A description of the request (e.g., “I want to delete my email address”)
Any supporting documents or evidence that helps verify your identity (optional but recommended)

We will acknowledge receipt of your request within 7 days and respond within 30 days, as required by the GDPR. If you need an immediate response, please include “Urgent” in the subject line of your email.

6. Contact Us

Data Protection Officer
Yummydinnerhub
Email: [email protected]

For any other privacy concerns or inquiries, please use the contact form on our website or write to us at the address listed above. We are committed to resolving your concerns promptly and transparently.

7. Policy Updates

We may update this policy from time to time to reflect changes in our data practices, legal requirements, or business operations. Any updates will be posted on this page with a new “Last Updated” date. We encourage you to review this policy regularly.