GDPR Compliance

General Data Protection Regulation Information

Your Rights Under GDPR

While hardy-glaze is an Australian-based organization, we respect the data protection rights of all individuals, including those protected under the European Union's General Data Protection Regulation (GDPR).

Data Controller

hardy-glaze is the data controller responsible for your personal data. We can be contacted at:

Email: [email protected]
Address: Level 12, 167 Eagle Street, Brisbane QLD 4000, Australia

Your Rights

If you are an individual in the European Economic Area (EEA), you have the following rights:

Right to Access

You have the right to request a copy of the personal data we hold about you.

Right to Rectification

You have the right to request correction of inaccurate or incomplete personal data.

Right to Erasure

You have the right to request deletion of your personal data in certain circumstances.

Right to Restrict Processing

You have the right to request that we restrict the processing of your personal data in certain situations.

Right to Data Portability

You have the right to receive your personal data in a structured, commonly used, and machine-readable format.

Right to Object

You have the right to object to the processing of your personal data in certain circumstances.

Rights Related to Automated Decision-Making

You have the right not to be subject to decisions based solely on automated processing that produce legal effects.

Legal Basis for Processing

We process your personal data based on the following legal grounds:

  • Consent: When you have given explicit consent for specific processing purposes
  • Contract: When processing is necessary for the performance of our services
  • Legal Obligation: When we must process data to comply with legal requirements
  • Legitimate Interests: When processing is necessary for our legitimate business interests

Data Transfers

As we operate from Australia, your personal data may be transferred outside the EEA. We ensure that appropriate safeguards are in place to protect your data in accordance with GDPR requirements.

Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected or as required by law. When your data is no longer needed, we securely delete or anonymize it.

Exercising Your Rights

To exercise any of your GDPR rights, please contact us at [email protected]. We will respond to your request within one month.

You also have the right to lodge a complaint with your local data protection authority if you believe your rights have been violated.

Security Measures

We implement appropriate technical and organizational measures to ensure a level of security appropriate to the risk, including:

  • Encryption of personal data
  • Regular security assessments
  • Access controls and authentication
  • Staff training on data protection
  • Incident response procedures

Updates to This Notice

We may update this GDPR notice from time to time to reflect changes in our practices or legal requirements. We will notify you of any material changes.