We take your privacy seriously. This policy explains what data we collect, why we collect it, who we share it with, and the rights you have over it.
Effective from May 2026.
1. Who we are
ryzemushroomcoffeereviews.com (“we”, “us”, “our”) is an independent editorial publication. For data-protection purposes we are the data controller of any personal data you submit through the Site. You can contact us at privacy@ryzemushroomcoffeereviews.com or via the postal address listed on our /contact page.
2. What information we collect
We collect three categories of information. First, information you give us directly — for example, your name, email address and message when you complete our contact form, or your email address if you subscribe to a future newsletter. Second, information we collect automatically when you visit the Site — including your IP address (truncated for anonymisation), browser type, device type, operating system, referring URL, the pages you view, the time and duration of your visit, and aggregate scroll/click data via our analytics provider. Third, information from cookies and similar technologies as described in section 6.
3. How we use your information
We use the information we collect to: (a) respond to your enquiries and editorial submissions; (b) understand how readers use the Site so we can improve the layout, navigation and content; (c) measure the effectiveness of our affiliate-link relationships; (d) detect, prevent and respond to security incidents and abuse; (e) comply with our legal obligations. We do not use your personal data for automated decision-making or profiling that produces legal or similarly significant effects.
4. Legal bases for processing (UK / EU readers)
Under UK GDPR and EU GDPR we rely on the following legal bases: (a) your consent — for non-essential cookies and any future marketing emails; (b) our legitimate interests — for the operation, security and analytics of the Site, balanced against your rights and freedoms; (c) the performance of a contract or steps prior to entering into a contract — for example, when you contact us with a press or partnership enquiry; (d) compliance with a legal obligation — for example, retaining records required by tax or anti-fraud law.
5. Who we share your information with
We do not sell your personal data. We share limited personal data with: (a) our hosting provider, which processes server logs on our behalf; (b) our analytics provider, which processes aggregated, de-identified usage statistics; (c) our email provider, if you contact us, so that we can reply; (d) affiliate-network partners, which receive a de-identified click identifier when you follow an affiliate link, so they can attribute any resulting commission. Each of these processors is bound by contract to handle your data only on our written instructions and to maintain appropriate security measures.
6. Cookies and similar technologies
We use a small number of cookies. Strictly necessary cookies keep the Site working (for example, remembering your cookie preferences and protecting against CSRF attacks). Analytics cookies help us understand how readers use the Site; we use a privacy-respecting analytics provider that anonymises IP addresses and does not set persistent cross-site identifiers. Affiliate cookies are set by third-party merchants when you follow an outbound product link. You can manage cookies through your browser settings; disabling analytics cookies will not affect your ability to read the Site.
7. International data transfers
Our hosting, analytics and email providers may be located outside the UK and the European Economic Area. Where personal data is transferred internationally, we rely on safeguards approved by the UK Information Commissioner’s Office and the European Commission, including the UK International Data Transfer Addendum and the EU Standard Contractual Clauses, together with supplementary technical measures such as encryption in transit and at rest.
8. How long we keep your information
Contact-form submissions and editorial correspondence are retained for up to 36 months from your last interaction with us, then deleted unless a longer retention period is required for legal or regulatory reasons. Aggregated analytics data is retained for up to 26 months. Server logs containing IP addresses are retained for up to 90 days for security and abuse-prevention purposes.
9. Your rights
If you are located in the UK, EEA, Switzerland, California or another jurisdiction with comparable data-protection law, you have the right to: (a) access the personal data we hold about you; (b) request correction of inaccurate or incomplete data; (c) request erasure of your data (“the right to be forgotten”) where applicable; (d) restrict or object to certain processing; (e) request data portability where applicable; (f) withdraw consent at any time without affecting the lawfulness of prior processing; (g) lodge a complaint with a supervisory authority (in the UK, the Information Commissioner’s Office at ico.org.uk). To exercise any of these rights, email privacy@ryzemushroomcoffeereviews.com. We will respond within one calendar month.
10. California residents (CCPA / CPRA)
Under the California Consumer Privacy Act and the California Privacy Rights Act, California residents have additional rights including the right to know what personal information we collect, the right to delete personal information we have collected, the right to correct inaccurate personal information, and the right to opt out of the “sale” or “sharing” of personal information. We do not sell personal information in the traditional sense, but our use of analytics and affiliate cookies may qualify as “sharing” under the CPRA. To opt out, set your browser’s Global Privacy Control signal — we honour it automatically.
11. Children
The Site is not directed at children under the age of 16, and we do not knowingly collect personal data from children. If you believe a child has provided us with personal data, please contact us so we can delete it.
12. Security
We use industry-standard security measures including TLS encryption in transit, encrypted backups at rest, principle-of-least-privilege access controls, regular security reviews and a documented incident-response procedure. No internet transmission can be guaranteed 100% secure, but we take all reasonable steps to protect the personal data you entrust to us.
13. Changes to this policy
We may update this Privacy Policy from time to time. The current version is always available at /privacy. Material changes will be flagged on the homepage for at least 14 days following the change.
14. Contact
For any question about this Privacy Policy or your personal data, contact privacy@ryzemushroomcoffeereviews.com or write to us at the postal address on our /contact page.
See also our Terms & Conditions and Disclaimer.





