GDPR

General Data Protection Regulation (GDPR) Compliance Policy

Last updated: 01/16/2025

Welcome to HurryDishes we protecting your personal data and ensuring transparency about how it is used is a priority for us. This GDPR compliance policy explains how we collect, process, and protect your personal data in accordance with the General Data Protection Regulation.

1. Data Controller Information

HurryDishes acts as the data controller for the personal data you provide through our website and services. If you have any questions or concerns about how we handle your data, please contact us:

2. Types of Data Collected

We collect and process the following categories of personal data:

  • Personal Identification Information: Name, email address, phone number, billing address, and delivery address.
  • Account Information: Username, password, and account preferences.
  • Transaction Data: Payment details and order history.
  • Technical Data: IP address, browser type, device information, and usage data.
  • Cookies and Tracking Data: Details of your interactions with our website and services (please refer to our Cookie Policy for more information).

3. Purpose and Legal Basis for Processing

We process your personal data for the following purposes:

  • To Fulfill Orders and Provide Services: Legal basis: Contractual necessity.
  • To Communicate With You: For customer support, updates, and marketing (if consent is provided). Legal basis: Legitimate interest or consent.
  • To Improve Our Services: Legal basis: Legitimate interest.
  • To Comply With Legal Obligations: Legal basis: Compliance with legal obligations.

4. Data Sharing and Transfers

We do not sell your personal data. However, we may share your data with the following parties:

  • Service Providers: Payment processors, delivery services, and IT support providers.
  • Legal Authorities: If required to comply with legal obligations or respond to lawful requests.
  • Third-Party Tools: Analytical tools (e.g., Google Analytics), subject to their privacy policies.

If your data is transferred outside the European Economic Area (EEA), we ensure that appropriate safeguards, such as Standard Contractual Clauses (SCCs), are in place.

5. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes outlined in this policy or to comply with legal obligations. After this period, your data will be securely deleted or anonymized.

6. Your Rights

Under GDPR, you have the following rights regarding your personal data:

  • Right to Access: Request a copy of the data we hold about you.
  • Right to Rectification: Request corrections to inaccurate or incomplete data.
  • Right to Erasure: Request deletion of your data (subject to certain conditions).
  • Right to Restriction: Request limited processing of your data.
  • Right to Data Portability: Request a copy of your data in a portable format.
  • Right to Object: Object to processing based on legitimate interests or direct marketing.
  • Right to Withdraw Consent: Withdraw consent where processing is based on it.
  • Right to Lodge a Complaint: File a complaint with your local data protection authority.

To exercise your rights, contact us at [email protected]

7. Security Measures

We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, loss, or misuse. These measures include encryption, secure servers, and regular security assessments.

8. Updates to This Policy

We may update this GDPR policy from time to time to reflect changes in our practices or legal requirements. We encourage you to review this page periodically for any updates.

If you have any questions or concerns about this GDPR compliance policy, please contact us at [email protected]

Thank you for trusting HurryDishes with your personal data.