GDPR Compliance

Last updated: May 25, 2026

1. Introduction

While glittering-hub is primarily based in Australia, we recognize that some of our website visitors may be from the European Union. This page outlines our commitment to complying with the General Data Protection Regulation (GDPR) for EU residents.

2. Data Controller

For the purposes of GDPR, glittering-hub is the data controller responsible for your personal data.

Contact details:
Email: [email protected]
Address: Level 14, 385 Bourke Street, Melbourne VIC 3000, Australia

3. Legal Basis for Processing

We process your personal data under the following legal bases:

• Consent: When you provide explicit consent (e.g., subscribing to marketing communications)
• Contractual necessity: When processing is necessary to fulfill a service agreement with you
• Legitimate interests: When we have a legitimate business interest (e.g., improving our services, fraud prevention)
• Legal obligation: When required by law

4. Your Rights Under GDPR

If you are an EU resident, you have the following rights:

4.1 Right to Access

You have the right to request a copy of the personal data we hold about you.

4.2 Right to Rectification

You can request that we correct any inaccurate or incomplete personal data.

4.3 Right to Erasure (Right to be Forgotten)

You can request deletion of your personal data under certain circumstances.

4.4 Right to Restrict Processing

You can request that we limit the processing of your personal data in certain situations.

4.5 Right to Data Portability

You have the right to receive your personal data in a structured, commonly used format and transmit it to another controller.

4.6 Right to Object

You can object to processing based on legitimate interests or for direct marketing purposes.

4.7 Right to Withdraw Consent

Where processing is based on consent, you can withdraw that consent at any time.

4.8 Right to Lodge a Complaint

You have the right to lodge a complaint with your local supervisory authority if you believe we have violated your data protection rights.

5. How to Exercise Your Rights

To exercise any of your GDPR rights, please contact us at [email protected]. We will respond to your request within 30 days.

6. Data Collection and Usage

We collect and process the following categories of personal data:

• Identity data (name, business name)
• Contact data (email address, physical address)
• Technical data (IP address, browser type, device information)
• Usage data (how you interact with our website)
• Communication data (correspondence with us)

7. Data Retention

We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, or as required by law. Retention periods vary depending on the type of data and the purpose of processing.

8. International Data Transfers

Your data may be transferred to and processed in Australia or other countries outside the EU. When we transfer data internationally, we ensure appropriate safeguards are in place, such as:

• Standard contractual clauses approved by the European Commission
• Adequacy decisions
• Other lawful transfer mechanisms

9. Data Security

We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, accidental loss, destruction, or damage. These measures include:

• Encryption of data in transit and at rest
• Regular security assessments
• Access controls and authentication
• Employee training on data protection

10. Automated Decision-Making

We do not use automated decision-making or profiling that produces legal effects or similarly significantly affects you.

11. Data Protection Officer

While not legally required to appoint a Data Protection Officer, we have designated a privacy contact person who can be reached at [email protected].

12. Third-Party Processing

We may engage third-party service providers to process data on our behalf. These processors are contractually bound to protect your data and process it only according to our instructions.

13. Cookies and Tracking

We use cookies and similar technologies. For detailed information, please see our Cookies Policy. You can manage cookie preferences through our cookie consent tool or your browser settings.

14. Children's Data

Our services are not directed at children under 16. We do not knowingly collect personal data from children. If we become aware that we have collected data from a child without parental consent, we will delete it promptly.

15. Changes to This Policy

We may update this GDPR compliance statement from time to time. Material changes will be communicated through our website or directly to you.

16. Contact Information

For any GDPR-related inquiries or to exercise your rights, please contact:

Email: [email protected]
Address: Level 14, 385 Bourke Street, Melbourne VIC 3000, Australia

EU Representative: If required under GDPR, we will appoint an EU representative and provide their contact details here.