GDPR Policy

GDPR Data Protection & Privacy Notice, ROOM OF READS

Last Updated: November 26, 2025


This GDPR Data Protection & Privacy Notice explains how Room of Reads (“we,” “us,” or “our”) collects, uses, stores, and protects your personal data in accordance with the General Data Protection Regulation (GDPR) and applicable UK and EU data protection laws. This Notice applies to individuals located in the European Union (EU), European Economic Area (EEA), and United Kingdom (UK) who access roomofreads.com (“the Site”). By using the Site, you agree to the terms outlined in this Notice.

1. Data Controller

Room of Reads is the data controller responsible for determining how your personal data is collected, used, and protected. For GDPR-related inquiries, requests, or concerns, you may contact us at: contact@roomofread.com

2. Types of Personal Data We Collect

We may collect and process the following categories of personal data:
a. Information You Provide:

  • Name
  • Email address
  • Comment submissions
  • Messages sent through contact forms
    This information is provided voluntarily by you.
    b. Automatically Collected Data:
  • IP address
  • Browser type and device information
  • Geographic region (non-precise)
  • Pages viewed and time spent
  • Referring websites
    This helps us optimize content and improve website performance.
    c. Cookies and Tracking:
    We use cookies, analytics tools, and similar technologies to enhance your browsing experience, personalize content, and analyze traffic. Some cookies are essential; others can be disabled in your browser settings.

3. Legal Bases for Processing Personal Data

We process personal data based on one or more of the following lawful bases:
a. Consent: When you subscribe to newsletters or accept cookies.
b. Legitimate Interests: For analytics, site optimization, security, and affiliate program functionality.
c. Legal Obligation: To comply with applicable regulations.
d. Contract: When responding to your direct inquiries or service requests.

4. How We Use Your Personal Data

Your personal data may be used to:

  • Respond to comments, questions, or messages
  • Send newsletters or reading updates (only if you voluntarily subscribed)
  • Analyze site traffic and user engagement
  • Improve website functionality, layout, and performance
  • Detect and prevent spam or security threats
  • Operate affiliate programs including Amazon Associates and Audible Affiliate Program, which may require cookie-based tracking
    We never sell or rent personal data to third parties.

5. Third-Party Data Sharing

We may share limited data with trusted third-party service providers, including:

  • Email marketing services
  • Website hosting and security tools
  • Analytics platforms (e.g., Google Analytics)
  • Affiliate networks such as Amazon and Audible
    These third parties only access the data necessary to perform their services and operate under their own privacy safeguards and GDPR-compliant policies.

6. International Data Transfers

Some third-party service providers may be located outside the EU/EEA/UK (such as the United States). When personal data is transferred internationally, we use providers that implement GDPR-compliant safeguards, including standard contractual clauses, secure data centers, and strict privacy protections.

7. Data Retention

We retain personal data only for as long as necessary to fulfill the purposes outlined in this Notice or as required by applicable laws. Newsletter data is stored until you unsubscribe; comments remain publicly visible unless manually removed.

8. Your GDPR Rights

If you are located in the EU, EEA, or UK, you have the following rights:
Right to Access: Request a copy of your personal data.
Right to Rectification: Correct inaccurate or incomplete information.
Right to Erasure: Request deletion of your data (“right to be forgotten”) where legally applicable.
Right to Restrict Processing: Limit how your data is used.
Right to Object: Object to processing based on legitimate interests.
Right to Data Portability: Request your data in a structured, machine-readable format.
Right to Withdraw Consent: Withdraw email or cookie consent at any time.
To exercise these rights, contact us at contact@roomofread.com.

9. Cookies and Consent

The Site uses cookies for analytics, personalization, performance, and affiliate tracking. Where required by GDPR, you will be asked to provide explicit cookie consent. You may modify or withdraw cookie settings in your browser at any time.

10. Email Communication

You will only receive emails if you voluntarily subscribe. Each email includes an unsubscribe link that removes your email from our mailing list immediately.

11. Children’s Data

The Site is intended for users aged 13 and older. We do not knowingly collect personal data from children under 13. If such data is identified, it will be promptly removed.

12. Data Security

We use reasonable administrative, technical, and physical safeguards to protect your personal data from unauthorized access, loss, or misuse. Despite these measures, no online transmission is completely secure.

13. Updates to This Notice

We may update this GDPR Notice periodically to reflect changes in technology, legal requirements, or site operations. The “Last Updated” date at the top of this page indicates the most recent version.

14. Contact Information

For questions, concerns, or GDPR-related requests, please contact: contact@roomofread.com