VeganPreps

Privacy Policy

Last updated: 29 May 2026

Introduction

VeganPreps (Andreas Schevzik) takes your privacy seriously. This policy explains how we collect, use, and protect your personal data in compliance with the EU General Data Protection Regulation (GDPR).

Data Controller (Art. 4(7) GDPR):

Andreas Schevzik (VeganPreps)

Tulpenstraße 20

92706 Luhe-Wildenau, Germany

Email: [email protected]

Phone: +49 9607 9228532

Data We Collect

Automatically collected (when you visit our website):

  • IP address and browser type (for security and site functionality)
  • Pages visited and time of access (server logs)
  • Referring URL

If you subscribe to our newsletter or download free resources:

  • Email address
  • Name (if provided)

If you leave a comment:

  • Name, email address, and comment content
  • IP address (spam prevention)

How We Use Your Data

We use your personal data to:

  • Provide the website: Display content, recipes, and resources.
  • Security: Protect against spam, abuse, and unauthorized access.
  • Communication: Respond to inquiries or send newsletters (only with your consent).
  • Legal obligations: Comply with German tax and accounting laws where applicable.

Legal Basis for Processing

We process your data based on the following legal grounds:

  • Article 6(1)(f) GDPR (legitimate interest): Site security, technical maintenance, and providing website content.
  • Article 6(1)(a) GDPR (consent): Newsletter subscriptions and optional cookies.
  • Article 6(1)(c) GDPR (legal obligation): Statutory retention requirements.

Affiliate Links and Amazon

This website participates in the Amazon Services LLC Associates Program. When you click on an affiliate link and make a purchase on Amazon, Amazon sets cookies on your device to track the referral. These cookies are governed by Amazon’s own privacy policy. We receive information about completed purchases (product category, order value) but never your personal details, payment information, or Amazon account data.

Cookies

Our website uses the following types of cookies:

  • Essential cookies: Required for the website to function (session management, security). These do not require your consent.
  • Affiliate cookies: Set by Amazon when you click an affiliate link. These are governed by Amazon’s privacy policy.

We do not use advertising cookies, third-party tracking pixels, or analytics services like Google Analytics.

Data Sharing

We do not sell your data. We only share data with the following service providers who support our website operations:

  • Hosting provider: Our web hosting provider stores and serves the website (servers located in the EU/global).
  • Amazon Associates: Receives referral data when you click affiliate links and make purchases.

Each provider may process data under its own responsibility in accordance with its own privacy policy.

Data Storage and Retention

  • Server logs: Automatically deleted after 30 days.
  • Comments: Stored indefinitely or until you request deletion.
  • Newsletter data: Stored until you unsubscribe.

Your Rights (GDPR)

You have the following rights under GDPR:

  • Access: Request a copy of your personal data (Art. 15).
  • Rectification: Correct inaccurate data (Art. 16).
  • Erasure: Request deletion (Art. 17), subject to legal retention requirements.
  • Restriction: Limit how we process your data (Art. 18).
  • Data portability: Receive your data in a structured, commonly used format (Art. 20).
  • Object: Object to certain processing based on legitimate interests (Art. 21).
  • Withdraw consent: You may withdraw consent at any time with effect for the future.

To exercise your rights, email: [email protected]

Data Security

We protect your data with appropriate technical and organizational measures, including:

  • SSL encryption (HTTPS) for the entire website.
  • Two-factor authentication on administrative accounts.
  • Regular security updates to WordPress core and plugins.

International Data Transfers

Some service providers (e.g., Amazon) may process data in countries outside the EU/EEA, particularly the USA. We ensure these providers use valid data transfer mechanisms (e.g., the EU-US Data Privacy Framework or Standard Contractual Clauses) to guarantee an adequate level of data protection.

Children’s Privacy

Our website is not directed at children under 16. We do not knowingly collect personal data from children.

Changes to This Policy

We may update this policy from time to time. Changes will be posted on this page with an updated “Last updated” date.

Contact and Supervisory Authority

If you have questions about this policy or how we handle your data, contact us at: [email protected]

You also have the right to file a complaint with a data protection supervisory authority. The competent authority is:

Bayerisches Landesamt für Datenschutzaufsicht (BayLDA)

Promenade 18

91522 Ansbach, Germany

Website: https://www.lda.bayern.de/