GDPR Compliance

Last Updated: May 11, 2026

While fleeting glow is based in Australia, we recognize the importance of the General Data Protection Regulation (GDPR) for individuals located in the European Union and European Economic Area. This page outlines our commitment to GDPR compliance.

1. Legal Basis for Processing

We process personal data under the following legal bases:

• Consent: You have explicitly agreed to our processing of your personal data for specific purposes
• Contract: Processing is necessary to fulfill our contractual obligations to you
• Legal Obligation: Processing is required to comply with applicable laws
• Legitimate Interests: Processing is necessary for our legitimate business interests, provided these do not override your rights

2. Your GDPR Rights

If you are located in the EU or EEA, you have the following rights:

Right to Access

You have the right to request a copy of the personal data we hold about you.

Right to Rectification

You can request that we correct any inaccurate or incomplete personal data.

Right to Erasure (Right to be Forgotten)

You can request that we delete your personal data in certain circumstances.

Right to Restrict Processing

You can request that we limit how we use your personal data in certain situations.

Right to Data Portability

You have the right to receive your personal data in a structured, commonly used format and transfer it to another controller.

Right to Object

You can object to our processing of your personal data for direct marketing or based on legitimate interests.

Right to Withdraw Consent

Where processing is based on consent, you have the right to withdraw that consent at any time.

Right to Lodge a Complaint

You have the right to lodge a complaint with your local data protection authority.

3. Data Transfers

As we are based in Australia, your personal data may be transferred outside the EU/EEA. We ensure appropriate safeguards are in place to protect your data in accordance with GDPR requirements.

4. Data Protection Officer

For GDPR-related inquiries, you may contact us at:

Email: [email protected]
Subject Line: GDPR Inquiry

5. How to Exercise Your Rights

To exercise any of your GDPR rights, please contact us at [email protected] with:

• Your full name and contact information
• A description of the right you wish to exercise
• Any relevant supporting information

We will respond to your request within one month, or inform you if we need additional time (up to three months for complex requests).

6. Children's Privacy

Our services are not directed to individuals under the age of 18. We do not knowingly collect personal data from children.

7. Data Security

We implement appropriate technical and organizational measures to ensure a level of security appropriate to the risk, including:

• Encryption of personal data in transit and at rest
• Regular security assessments and testing
• Access controls and authentication procedures
• Staff training on data protection

8. Changes to This Statement

We may update this GDPR Compliance statement from time to time. Any changes will be posted on this page with an updated date.

9. Contact Information

For questions about our GDPR compliance or to exercise your rights, contact us at:

Email: [email protected]
Address: Level 12, 380 St Kilda Road, Melbourne VIC 3004, Australia