UK GDPR

UK GDPR

Dorian Hawthorne 5 Nov 2024

UK GDPR Compliance

At Spice & Sizzle: Heat Up Your Cooking, we are committed to protecting your personal data in accordance with the UK General Data Protection Regulation (UK GDPR). This page explains how we comply with your rights under UK GDPR and what data we collect when you visit our website.

Scope and Applicability

This compliance page applies to all visitors of chilliesheaton.co.uk, regardless of location. Although our website is based in the United Kingdom, we adhere to UK GDPR standards for all users, as we process personal data through automated means such as website analytics and cookies.

Your Rights Under UK GDPR

Under UK GDPR, you have the following rights regarding your personal data:

  • Right of access – You can request a copy of the personal data we hold about you.
  • Right to rectification – You can ask us to correct any inaccurate or incomplete personal data.
  • Right to erasure – You can request the deletion of your personal data in certain circumstances.
  • Right to restrict processing – You can ask us to limit how we use your data.
  • Right to data portability – You can request your data in a structured, machine-readable format.
  • Right to object – You can object to our processing of your data based on legitimate interests, including profiling and analytics.

How We Comply

Spice & Sizzle does not collect personal information through registration, forms, or databases. We do not store names, email addresses, or other identifiers. However, we use third-party analytics tools (such as Google Analytics) and cookies to understand how visitors interact with our content. These tools process anonymized or pseudonymized data in compliance with UK GDPR. We have implemented measures to ensure data minimization, purpose limitation, and security.

Data We Process

The only personal data we process automatically includes:

  • IP addresses (anonymized)
  • Browser type and device information
  • Pages visited and time spent on site
  • Cookies and similar tracking technologies

This data is used solely for improving user experience and website performance. No personally identifiable information is collected or stored.

Legal Basis for Processing

Our processing of data is based on legitimate interest under Article 6(1)(f) of UK GDPR. We have a legitimate interest in understanding how visitors use our site to improve content and ensure technical functionality. This interest is balanced against your privacy rights, and we do not process data for profiling or automated decision-making.

How to Exercise Your Rights

If you wish to exercise any of your rights under UK GDPR, please contact us at [email protected]. In your message, please include:

  1. Your full name
  2. A clear description of the right you wish to exercise
  3. Any relevant details (e.g., approximate date of visit)

We will respond without undue delay and within one month of receiving your request.

Response Timeframes

Under UK GDPR, we are required to respond to your requests within one month. If your request is complex or numerous, we may extend this period by up to two additional months and will inform you within one month of receipt.

No Discrimination Policy

We will never deny you access to our content, charge you fees, or provide a lower quality of service because you exercised your rights under UK GDPR.

Updates and Changes

We may update this compliance page periodically to reflect changes in law or our practices. Any updates will be posted here with a revised effective date. We recommend reviewing this page occasionally.

Contact Information

If you have any questions about this compliance page or wish to exercise your rights, please contact our data protection contact:

Dorian Hawthorne
Email: [email protected]
Address: Shrine of Remembrance, Birdwood Ave, Melbourne VIC 3001, Australia

If you believe we have not complied with your rights under UK GDPR, you may lodge a complaint with the Information Commissioner’s Office (ICO): ico.org.uk.