GDPR Compliance Policy

Site: Dishsizzle

Last Updated: April 03, 2026

Dishsizzle (hereinafter “we”, “us”, or “our”) respects the privacy of every individual who visits our website (https://dishsizzle.com) and uses our services. This policy explains how we collect, use, store, and protect your personal data in compliance with the General Data Protection Regulation (GDPR) and related EU data‑protection laws. By accessing or using our website, you acknowledge that you have read, understood, and agreed to this policy.

Legal Basis for Processing

We process your personal data only when it is necessary and lawful. Our legal bases include:

Consent: When you voluntarily provide your email address or other personal information, you are giving us explicit consent to use that data for the purposes specified on our site.
Legitimate Interest: We rely on legitimate interests to process data that is essential for the operation of our services, such as using analytics to improve user experience and ensuring the security of our systems.

Right to Access

You have the right to obtain confirmation from us that we are processing your personal data, and if so, to receive a copy of the data we hold about you. This includes information such as the categories of personal data processed, the purposes of processing, and the recipients to whom the data has been disclosed.

Right to Rectification

If any of the personal data we hold about you is inaccurate or incomplete, you can request that we correct or complete it. This right applies to data you have provided directly to us or that we have derived from your interactions with our services.

Right to Erasure

Under certain circumstances, you may ask us to delete your personal data. This is commonly referred to as the “right to be forgotten.” We will delete data that is no longer necessary for the purposes for which it was collected, except where we are required to retain it for legal or regulatory reasons.

Right to Restrict Processing

You may request that we restrict the processing of your personal data if you contest its accuracy, if we are no longer allowed to process it, or if you wish for us to stop using it for direct‑marketing purposes. During the restriction period, we may only store your data, but not use it for any other purpose.

Right to Data Portability

You have the right to receive the personal data we hold about you in a structured, commonly used, and machine‑readable format. You may also request that we transfer this data directly to another controller, provided that the data is processed by a compatible system.

Right to Object

You can object to the processing of your personal data for legitimate interests or for direct‑marketing activities. If you object, we will cease processing your data for those purposes unless we can demonstrate compelling legitimate grounds that override your interests, rights, and freedoms.

Right to Withdraw Consent

Consent can be withdrawn at any time. If you withdraw consent, we will stop processing your data for the purposes for which you gave consent, unless we have another legal basis for processing.

Data We Collect

Dishsizzle collects the following types of personal data to provide a seamless user experience and to improve our services:

Email addresses: Used for account registration, newsletters, and communication about new features or promotions.
Cookies and similar tracking technologies: We use first‑party cookies to store session information and preferences, and third‑party cookies for analytics and advertising purposes.
Analytics data: We employ tools such as Google Analytics to gather aggregate statistics on user interactions, page views, and traffic sources. This data is anonymized and used solely for performance monitoring and service optimization.

How We Protect Your Data

We employ robust technical and organizational measures to safeguard your personal data:

SSL/TLS encryption: All data transmitted between your browser and our servers is encrypted using HTTPS with up-to‑date TLS protocols.
Secure servers: Our hosting environment is protected by firewalls, intrusion detection systems, and regular security audits.
Access controls: Only authorized personnel with a legitimate business need can access personal data. All staff undergo data‑protection training.
Limited retention: Personal data is retained only for as long as necessary to fulfill the purposes for which it was collected or as required by law. After that, we securely delete or anonymize the data.

How to Exercise Your GDPR Rights

To exercise any of the rights described above, please send a written request to:

Dishsizzle – GDPR Officer
Email: [email protected]

Your request should include:

Your full name and contact details.
A clear statement of the right you are exercising (e.g., access, rectification, erasure).
Any additional information that can help us identify the personal data in question (e.g., email address, user ID).

We will respond to your request within 30 days of receipt. If the request is complex or we need further verification, we may extend the period by up to an additional 30 days, in which case we will inform you of the delay and the reason for it.

Data Breach Notification

In the unlikely event of a personal data breach that could pose a risk to your rights and freedoms, we will notify the relevant supervisory authority within 72 hours and inform affected individuals without undue delay. We will provide details on the nature of the breach, the likely consequences, and the measures taken to mitigate the impact.

Changes to This Policy

We reserve the right to update this policy as needed. Any changes will be posted on this page with a revised “Last Updated” date. We encourage you to review the policy regularly to stay informed about how we manage your personal data.

Contact Us

If you have any questions about this policy, our data‑processing practices, or your rights under the GDPR, please contact us at: