CookieremYour Cookie Jar

GDPR Compliance

Last Updated: May 10, 2025

1. Introduction

This GDPR Compliance Statement explains how Cookierem complies with the European Union's General Data Protection Regulation (GDPR). We are committed to protecting the privacy and security of your personal data.

2. Data Controller

Cookierem acts as a data controller for the personal data we collect and process. This means we determine the purposes and means of processing your personal data.

3. Legal Basis for Processing

We process your personal data on the following legal bases:

  • Consent: We process certain data based on your explicit consent.
  • Contract: We process data necessary for the performance of our contract with you.
  • Legitimate Interests: We process data for our legitimate interests, such as improving our services.
  • Legal Obligation: We process data to comply with legal obligations.

4. Your Rights Under GDPR

Under the GDPR, you have the following rights:

  • Right to Access: You have the right to request a copy of your personal data.
  • Right to Rectification: You have the right to request that we correct any inaccurate personal data.
  • Right to Erasure: You have the right to request that we delete your personal data.
  • Right to Restrict Processing: You have the right to request that we restrict the processing of your personal data.
  • Right to Data Portability: You have the right to request that we transfer your personal data to another controller.
  • Right to Object: You have the right to object to our processing of your personal data.
  • Rights Related to Automated Decision Making: You have the right not to be subject to a decision based solely on automated processing.

5. How to Exercise Your Rights

To exercise any of these rights, please contact us at privacy@cookierem.com. We will respond to your request within 30 days. If we need more time, we will inform you of the delay and provide an explanation.

6. Data Protection Officer

We have appointed a Data Protection Officer (DPO) who is responsible for overseeing questions in relation to this GDPR Compliance Statement. If you have any questions about this statement or how we handle your personal data, please contact our DPO at dpo@cookierem.com.

7. International Data Transfers

We may transfer your personal data to countries outside the European Economic Area (EEA). When we do, we ensure that appropriate safeguards are in place to protect your data, such as Standard Contractual Clauses approved by the European Commission.

8. Data Breach Notification

In the event of a personal data breach, we will notify the relevant supervisory authority within 72 hours of becoming aware of the breach, where feasible. If the breach is likely to result in a high risk to your rights and freedoms, we will also notify you without undue delay.

9. Data Protection Impact Assessment

We conduct Data Protection Impact Assessments (DPIAs) for processing operations that are likely to result in a high risk to the rights and freedoms of individuals.

10. Contact Us

If you have any questions about our GDPR compliance or how we handle your personal data, please contact us at privacy@cookierem.com.