Last updated: March 4, 2026
Show Me Ideas is committed to protecting the personal data of all visitors, including those in the European Union (EU) and European Economic Area (EEA). This page outlines how we comply with the General Data Protection Regulation (GDPR) — Regulation (EU) 2016/679 — and explains your rights as a data subject.
Data Controller
The data controller responsible for your personal data is:
- Name: Show Me Ideas
- Website: showmeideas.com
- Email: contact@showmeideas.com
As the data controller, we determine the purposes and means of processing your personal data and are responsible for ensuring that such processing complies with applicable data protection laws.
Legal Basis for Processing
Under the GDPR, we must have a valid legal basis for processing your personal data. We rely on the following legal bases depending on the type of processing:
Consent (Article 6(1)(a) GDPR)
We process your data based on your explicit consent in the following situations:
- Newsletter subscriptions: When you voluntarily subscribe to our email newsletter.
- Cookies: When you accept non-essential cookies through our cookie consent mechanism (analytics cookies, third-party cookies).
- Contact form submissions: When you voluntarily submit a message through our contact form.
You have the right to withdraw your consent at any time. Withdrawing consent does not affect the lawfulness of processing that occurred before the withdrawal.
Legitimate Interest (Article 6(1)(f) GDPR)
We process certain data based on our legitimate interests, provided that these interests are not overridden by your fundamental rights and freedoms:
- Website analytics: To understand how visitors use our Site and improve our content and user experience.
- Spam protection: To protect our forms and comment sections from spam and abuse using Google reCAPTCHA.
- Security: To detect and prevent security threats and unauthorized access to our Site.
Legal Obligation (Article 6(1)(c) GDPR)
We may process your data when required to comply with a legal obligation, such as responding to lawful requests from public authorities or retaining records as required by law.
Data Processing Activities
We process personal data in the following ways:
| Activity | Data Collected | Legal Basis | Retention Period |
|---|---|---|---|
| Comments | Name, email, website, IP address, comment content | Consent | Until deletion request or article removal |
| Newsletter | Email address, name (optional) | Consent | Until unsubscription |
| Contact form | Name, email, message content | Consent | 12 months after resolution |
| Analytics | IP address (anonymized), pages visited, session data | Legitimate interest / Consent | 26 months (Google Analytics default) |
| Spam protection | IP address, browser data | Legitimate interest | As per Google reCAPTCHA policy |
| Server logs | IP address, browser type, access times | Legitimate interest | 12 months |
Rights of EU/EEA Users
If you are located in the EU or EEA, the GDPR provides you with the following rights regarding your personal data:
Right of Access (Article 15)
You have the right to request confirmation of whether we process your personal data and, if so, to receive a copy of that data along with information about how it is processed.
Right to Rectification (Article 16)
You have the right to request the correction of inaccurate personal data or the completion of incomplete data we hold about you.
Right to Erasure / Right to Be Forgotten (Article 17)
You have the right to request the deletion of your personal data when:
- The data is no longer necessary for the purpose for which it was collected.
- You withdraw your consent and there is no other legal basis for processing.
- You object to the processing and there are no overriding legitimate grounds.
- The data has been unlawfully processed.
- The data must be erased to comply with a legal obligation.
Right to Restriction of Processing (Article 18)
You have the right to request that we restrict the processing of your personal data in certain circumstances, such as when you contest the accuracy of the data or when you have objected to processing.
Right to Data Portability (Article 20)
You have the right to receive the personal data you provided to us in a structured, commonly used, and machine-readable format, and to transmit that data to another controller without hindrance.
Right to Object (Article 21)
You have the right to object to the processing of your personal data based on legitimate interests or for direct marketing purposes. Upon receiving your objection, we will cease processing unless we can demonstrate compelling legitimate grounds that override your rights.
Right Not to Be Subject to Automated Decision-Making (Article 22)
You have the right not to be subject to decisions based solely on automated processing, including profiling, that produce legal effects concerning you or similarly significantly affect you. We do not engage in automated decision-making on our Site.
International Data Transfers
Some of our third-party service providers (such as Google) may process data outside the EU/EEA. When personal data is transferred internationally, we ensure that appropriate safeguards are in place, such as:
- Standard Contractual Clauses (SCCs): Approved by the European Commission to ensure adequate protection for data transferred outside the EU/EEA.
- Adequacy decisions: Where the European Commission has determined that a third country provides an adequate level of data protection.
- EU-U.S. Data Privacy Framework: For transfers to certified organizations in the United States, where applicable.
Data Protection Officer
For any data protection inquiries or to exercise your rights under the GDPR, you may contact our designated data protection contact:
- Email: contact@showmeideas.com
Please include “GDPR Request” in the subject line of your email to ensure your inquiry is handled promptly.
How to Exercise Your Rights
To exercise any of the rights described above, please follow these steps:
- Submit a request: Send an email to contact@showmeideas.com with the subject line “GDPR Request.”
- Provide identification: We may need to verify your identity before processing your request to ensure the security of your personal data.
- Receive a response: We will acknowledge your request within 72 hours and provide a substantive response within 30 days. If your request is complex, we may extend this period by an additional 60 days, and we will inform you of any such extension.
All requests will be handled free of charge unless they are manifestly unfounded or excessive, in which case we may charge a reasonable fee or refuse the request.
Right to Lodge a Complaint
If you believe that our processing of your personal data infringes the GDPR, you have the right to lodge a complaint with a supervisory authority in the EU Member State of your habitual residence, place of work, or the place of the alleged infringement. A list of EU data protection authorities can be found on the European Data Protection Board website.
We encourage you to contact us first at contact@showmeideas.com so we can try to resolve your concern before you approach a supervisory authority.
Changes to This Page
We may update this GDPR Compliance page from time to time. Any changes will be posted here with an updated “Last updated” date. We encourage you to review this page periodically to stay informed about how we protect your data.
Contact Us
If you have any questions about our GDPR compliance or data protection practices, please contact us at:
- Email: contact@showmeideas.com
- Website: showmeideas.com