GDPR Compliance

Last updated: January 2024

This page outlines how Feral Dusk complies with the General Data Protection Regulation (GDPR) for visitors and customers from the European Economic Area (EEA) and the United Kingdom.

Data Controller

Feral Dusk acts as the data controller for personal information collected through our website and services. Our contact details are:

Feral Dusk
42 Harbour Street, Suite 7
Sydney NSW 2000
Australia
Email: [email protected]

Legal Basis for Processing

We process personal data under the following legal bases:

  • Consent: When you opt in to receive marketing communications or accept non-essential cookies
  • Contract: When processing is necessary to fulfil a service booking or agreement with you
  • Legitimate Interest: For business operations, fraud prevention, and improving our services
  • Legal Obligation: When required to comply with applicable laws and regulations

Your Rights Under GDPR

If you are located in the EEA or UK, you have the following rights regarding your personal data:

Right of Access

You may request a copy of the personal data we hold about you. We will provide this information free of charge within one month of your request.

Right to Rectification

You may request that we correct any inaccurate or incomplete personal data we hold about you.

Right to Erasure

You may request that we delete your personal data where there is no compelling reason for continued processing. This right does not apply where we are required to retain data for legal reasons.

Right to Restrict Processing

You may request that we limit how we use your data while a complaint or query is being resolved.

Right to Data Portability

You may request a copy of your data in a structured, commonly used, machine-readable format, and have it transferred to another controller where technically feasible.

Right to Object

You may object to processing based on legitimate interests or for direct marketing purposes. We will stop processing unless we can demonstrate compelling legitimate grounds.

Rights Related to Automated Decision-Making

We do not use automated decision-making or profiling that produces legal effects concerning you.

International Data Transfers

As an Australian business, your data may be transferred to and processed in Australia. We ensure appropriate safeguards are in place for such transfers, including:

  • Standard contractual clauses approved by the European Commission
  • Compliance with the Australian Privacy Principles, which provide comparable protection
  • Data processing agreements with all third-party service providers

Data Retention

We retain personal data only for as long as necessary to fulfil the purposes for which it was collected:

  • Customer records: 7 years after last transaction (legal requirement)
  • Marketing preferences: Until you withdraw consent
  • Website analytics: 26 months
  • Enquiry records: 2 years after resolution

Exercising Your Rights

To exercise any of your GDPR rights, please contact us at [email protected] with:

  • Your full name and contact information
  • A description of the right you wish to exercise
  • Any information that helps us identify your data

We will respond to all legitimate requests within one month. If your request is complex, we may extend this by an additional two months with prior notification.

Complaints

If you are dissatisfied with how we handle your data, you have the right to lodge a complaint with your local supervisory authority. For UK residents, this is the Information Commissioner's Office (ICO). For EEA residents, contact your national data protection authority.

Updates to This Information

We may update this GDPR information periodically. Significant changes will be communicated through our website or direct communication where appropriate.

We use cookies to enhance your experience. By continuing to browse, you agree to our Cookie Policy.