GDPR Compliance Statement

Effective Date: November1, 2025

At flavornests, we are fully committed to safeguarding your personal data and upholding your privacy rights in accordance with the General Data Protection Regulation (GDPR). This statement supplements our Privacy Policy and outlines how we process personal data, our legal basis for doing so, and your rights under the GDPR if you are located within the European Union (EU) or European Economic Area (EEA).

Data Controller

The data controller responsible for processing your personal data is:

flavornests
📧 Email: fl*********@***il.com

Personal Data Collection & Purpose of Processing

We collect and process personal data to:

  • Respond to inquiries and support requests

  • Provide services such as newsletters, personalized content, and user accounts

  • Fulfill transactions and maintain order or browsing history

  • Improve our website, content, and user experience

  • Conduct interest-based advertising and marketing (as outlined in our Privacy Policy)

Legal Bases for Processing

We process your personal data under one or more of the following legal bases:

  • Consent – When you explicitly agree (e.g., newsletter subscription)

  • Contract – When processing is necessary to fulfill a contract with you

  • Legitimate Interests – For purposes like analytics, fraud prevention, or site improvement

Your Rights Under the GDPR

As a data subject under the GDPR, you have the right to:

  • Access – Request a copy of your personal data

  • Rectification – Request correction of inaccurate or incomplete data

  • Erasure – Request deletion when no longer needed or when legally required

  • Restriction – Request limits on how we process your data

  • Data Portability – Request your data in a structured, machine-readable format

  • Object – Object to processing for legitimate interests or direct marketing

To exercise any of these rights, contact us at 📧 fl*********@***il.com.

Data Security

We apply appropriate technical and organizational measures to protect your data from unauthorized access, loss, misuse, or disclosure. This includes:

  • Encryption during data transmission

  • Secure data storage infrastructure

  • Role-based access and authentication controls

International Data Transfers

We do not transfer your personal data outside the EU/EEA unless appropriate safeguards are in place, including:

  • Standard Contractual Clauses (SCCs) approved by the European Commission

  • Transfers to countries with an adequacy decision

  • Binding corporate rules or other recognized legal mechanisms

Consent Management

If we process your data based on your consent (e.g., email marketing), you may withdraw that consent at any time by contacting us. Withdrawal will not affect the lawfulness of processing based on consent before its withdrawal.

Complaints

If you believe your rights under the GDPR have been violated, you have the right to lodge a complaint with your local Data Protection Authority (DPA). You can find contact details here:
🌐 https://edpb.europa.eu/about-edpb/board/members_en

Changes to This Statement

We may update this GDPR Compliance Statement from time to time. All changes will be posted on this page, with the effective date clearly indicated.

Contact Us

If you have questions, concerns, or requests related to your personal data or this statement, please contact us at:
📧 fl*********@***il.com

flavornests is committed to maintaining the highest standards of transparency, accountability, and data privacy.

Last Updated: November1, 2025