Privacy Policy

Last updated: May 2026

1. About This Policy

This Privacy Policy explains how Devour Destinations (“Devour Destinations,” “we,” “us,” or “our”) collects, uses, stores, and shares information about visitors to devourdestinations.com. We are committed to handling your data transparently and in compliance with applicable privacy laws, including the EU General Data Protection Regulation (GDPR), the UK GDPR, and the California Consumer Privacy Act (CCPA/CPRA).

By using this site, you acknowledge that you have read and understood this policy. If you disagree with any part of it, please discontinue use of the site.

2. Who We Are

Devour Destinations is an independent editorial publication covering dining travel and culinary destination guides. The site is operated by its owner and editor. For privacy-related inquiries, please use the Contact page on this site.

3. Information We Collect

3.1 Information You Provide Directly

Contact form submissions. When you submit our Contact form, we collect your name, email address, and message. This information is used solely to respond to your inquiry. We do not use it for marketing or share it with third parties outside of what is necessary to process your request.

Comments. If you leave a comment on the site, we collect your name, email address, website URL (if provided), the comment text, and your IP address. Your email address is not displayed publicly; it may be used to detect spam. Comments are retained until manually deleted by an administrator.

3.2 Information Collected Automatically

Server access logs. Our hosting provider (Hostinger) automatically records standard web server access logs, which include your IP address, browser type and version, operating system, referral URL, pages visited, and timestamps. These logs are maintained for security and operational diagnostics and are not used for marketing profiling.

Caching and CDN. This site uses LiteSpeed Cache with QUIC.cloud for page caching, image optimization, and CDN delivery of static assets. As part of standard CDN operation, QUIC.cloud may process your IP address and general request metadata.

3.3 Information Collected Via Affiliate Links

When you click an affiliate link on this site, you are redirected to a third-party website (such as Amazon, Viator, or Booking.com). Those third parties operate under their own privacy policies and may independently collect data about you — including setting cookies, tracking browsing behavior, and collecting purchase information. We do not receive or have access to personal information you provide to those third parties beyond aggregate commission reports. See Section 7 for more detail.

3.4 What We Do NOT Collect

For full transparency: Devour Destinations does not currently use Google Analytics, Google AdSense, Facebook Pixel, or other advertising-network tracking scripts. We do not build behavioral profiles of our visitors, run retargeting campaigns, or sell personal data. If this changes materially, this policy will be updated before any new collection begins.

4. Legal Basis for Processing (GDPR)

For visitors in the European Economic Area (EEA) or UK, we process personal data under the following lawful bases:

  • Legitimate interests — server log processing for security and operational stability; spam detection on comments.
  • Performance of a contract / pre-contractual steps — responding to contact form inquiries you initiate.
  • Consent — optional cookies placed when you submit a comment (name/email stored in browser cookies for convenience).

Where our processing relies on legitimate interests, we have assessed that those interests are not overridden by your privacy rights, given the limited nature of the data involved and the operational necessity of the processing.

5. Cookies and Tracking Technologies

Cookies are small text files stored in your browser by websites you visit. Devour Destinations uses cookies as follows:

  • Functionality cookies. If you submit a comment and opt in, your name, email, and website may be saved in your browser for one year so you do not have to re-enter them on subsequent visits.
  • Session cookies. Temporary session cookies may be set by LiteSpeed Cache to support caching logic. These expire when you close your browser and contain no personal data.
  • Affiliate partner cookies. When you click an affiliate link, the destination site (Amazon, Viator, etc.) may set its own cookies to track referrals and purchases. These are governed by those partners’ privacy policies, not ours.

You can control cookies through your browser settings. Disabling cookies may limit some site functionality (such as saved comment credentials) but will not prevent you from reading our content.

6. Third-Party Services

We work with the following third parties in connection with operating this site:

  • Hostinger — web hosting provider; processes server logs and stores site files on our behalf. Privacy policy: hostinger.com/privacy-policy.
  • QUIC.cloud / LiteSpeed — CDN and caching layer; may process IP addresses as part of content delivery. Privacy policy: quic.cloud/privacy-policy.
  • Akismet — if enabled, processes comment data to detect spam. Privacy policy: akismet.com/privacy.
  • Affiliate networks — see Section 7.

Each of these parties processes data under their own privacy policies and data processing terms. We have selected providers who operate under GDPR-compliant data processing agreements where applicable.

7. Affiliate Programs and Third-Party Links

We participate in affiliate programs including Amazon Associates, Viator, GetYourGuide, restaurant booking platforms, and similar travel and dining programs. When you click an affiliate link and make a purchase or booking, we may earn a commission at no extra cost to you. We are not responsible for the privacy practices, terms, or content of external sites we link to, including affiliate partners. When you leave our site via a link, you are subject to the destination site’s privacy policy.

Affiliate commissions do not affect the price you pay. Our editorial recommendations are made independently — see our Affiliate Disclosure for full details.

8. Data Retention

  • Contact form submissions — retained as long as reasonably necessary to respond to your inquiry, then deleted.
  • Comments — retained indefinitely unless you request deletion or the comment is removed by an administrator.
  • Server access logs — retained per Hostinger’s standard log retention policy (typically 30–90 days for operational logs).
  • Browser cookies (comment credentials) — retained for one year from the date set, or until you clear them.

9. International Data Transfers

Our site is hosted on servers within the European Union (Hostinger infrastructure). If you access this site from outside the EU, your data may be processed in the EU. By using this site, you consent to that transfer. Where we share data with third parties located outside the EEA (such as US-based affiliate networks), we rely on those parties’ participation in appropriate transfer mechanisms, including the EU–US Data Privacy Framework where applicable.

10. Your Rights

Depending on your location, you may have the following rights regarding your personal data:

10.1 Rights Under GDPR (EEA and UK Residents)

  • Right of access — request a copy of the personal data we hold about you.
  • Right to rectification — request correction of inaccurate data.
  • Right to erasure (“right to be forgotten”) — request deletion of your personal data where we have no legitimate reason to continue holding it.
  • Right to restriction of processing — request that we limit processing of your data in certain circumstances.
  • Right to data portability — receive your data in a structured, machine-readable format.
  • Right to object — object to processing based on legitimate interests.
  • Right to withdraw consent — where processing is based on consent, withdraw it at any time without affecting prior lawful processing.
  • Right to lodge a complaint — you have the right to file a complaint with your local supervisory authority (e.g., the ICO in the UK or your national data protection authority in the EU).

10.2 Rights Under CCPA (California Residents)

California residents have the right to: know what personal information we collect, use, and share; request deletion of personal information; opt out of the “sale” of personal information (we do not sell personal information); and not be discriminated against for exercising these rights.

To exercise any of these rights, please contact us via the Contact page. We will respond within the timeframe required by applicable law.

11. Children’s Privacy

Devour Destinations is not directed to children under the age of 13 (or 16 where applicable under local law). We do not knowingly collect personal information from children. If you believe a child has provided personal information to us, please contact us and we will delete it.

12. Security

We take reasonable technical and organizational measures to protect the personal information we hold, including use of HTTPS encryption for all data transmitted to and from this site, access controls on administrative systems, and selection of hosting and service providers with appropriate security standards. However, no internet transmission or electronic storage is completely secure. We cannot guarantee absolute security.

13. Changes to This Policy

We may update this Privacy Policy periodically. When we make material changes, we will update the “Last updated” date at the top of this page. Your continued use of the site after changes are posted constitutes your acceptance of the revised policy. We encourage you to review this page periodically.

14. Contact

For questions, requests regarding your personal data, or privacy concerns, please reach us via the Contact page on this site. We aim to respond to all privacy requests within 30 days.