GDPR

GDPR Notice for SavoryScrolls.com

Welcome to SavoryScrolls.com . This GDPR Notice explains how we comply with the European Union’s General Data Protection Regulation (GDPR) when processing personal data of visitors from the EU / EEA.

1. Data Controller

We are the data controller for purposes of GDPR.
Name: SavoryScrolls.com
Contact Email: contact@savoryscrols.com

2. Personal Data We Collect & Process

When you visit or interact with SavoryScrolls.com, we may process the following kinds of personal data:

  • Log data: Your IP address, browser type, operating system, referring pages, pages visited, date/time, click data.
  • Cookies & tracking technologies: We use cookies (and similar technologies) for different purposes (necessary, analytics, advertising, etc.).
  • Email address: If you sign up for our newsletter, send us a message, or otherwise contact us, you may provide your email address and other contact information.

3. Purpose & Legal Basis for Processing

We process your personal data for the following purposes:

  • To operate and maintain the website (legal basis: legitimate interests).
  • To analyze usage (analytics cookies) so we can improve our content and website (legal basis: consent).
  • To deliver personalized advertising (if applicable) (legal basis: consent).
  • To communicate with you, such as when you subscribe to our newsletter or contact us (legal basis: your consent or performance of a contract, if relevant).

4. Cookies & Consent

  • We deploy a cookie banner / consent management tool when required: non-essential cookies (such as analytics or advertising cookies) are only set after you have given valid consent. Exabeam+1
  • Our cookies fall into different categories:
    • Strictly necessary cookies: required for basic functionality of the site (no consent needed). cookie-banner.ca+1
    • Performance or analytics cookies: to measure how users interact with the site (requires consent). Acquia
    • Advertising / marketing cookies: to serve tailored ads or track for ad performance (requires explicit consent). Exabeam
  • You can manage or withdraw your cookie consent at any time by using our cookie settings / preferences.

5. Third-Party Processors

We may share personal data with third parties, such as:

  • Analytics providers (e.g., Google Analytics)
  • Advertising partners (if we use ads)
  • Email service providers (for newsletter)

These processors only use your data on our behalf and in compliance with GDPR.

6. Your Rights Under GDPR

If you are a user in the EU / EEA, you have the following rights regarding your personal data:

  • Right of access: You can ask what personal data we hold about you.
  • Right to rectification: If your data is inaccurate or incomplete, you can request it be corrected.
  • Right to erasure (“right to be forgotten”): You may request that we delete your personal data, subject to some exceptions.
  • Right to restrict processing: Under certain conditions, you can ask us to limit how we use your data.
  • Right to data portability: You can ask for a copy of your data in a structured, machine-readable format.
  • Right to withdraw consent: If we rely on your consent to process data (e.g., cookies, newsletter), you can withdraw that consent at any time.
  • Right to complain: You can lodge a complaint with a supervisory authority in your EU country.

To exercise these rights, please contact us at contact@savoryscrols.com .

7. Data Retention

We retain personal data only for as long as is necessary for the purposes for which it was collected, or as required by law. For example:

  • Analytics data may be retained for a period (e.g., 26 months, or whatever your analytics provider allows).
  • Email addresses (newsletter) may be kept until you unsubscribe, unless required longer for legal purposes.

8. Data Security

We take reasonable technical and organizational measures to protect your personal data against unauthorized access, loss, or misuse. However, no method of transmission over the Internet is 100% secure, so we cannot guarantee absolute security.

9. International Data Transfers

If data is transferred outside the EU / EEA (for example, to an analytics provider based outside Europe), we ensure appropriate safeguards are in place (e.g., standard contractual clauses or similar).

10. Updates to This GDPR Notice

We may periodically update this GDPR notice to reflect changes in our practices, technology, or legal requirements. We will update the Effective Date when we make material changes. We encourage you to review this page regularly.