Your data protection rights
The General Data Protection Regulation (GDPR) is a European Union regulation that governs data protection and privacy. Although dark-comet is based in Australia, we are committed to upholding the principles of GDPR for all our users, regardless of their location.
This page outlines how we comply with GDPR requirements and details your rights as a data subject.
dark-comet is committed to:
We process personal data on the following legal bases:
When you submit an enquiry form or contact us directly, you consent to us processing your data to respond to your request. You may withdraw consent at any time.
When you engage our services, we process your data as necessary to fulfil our contractual obligations to you.
We may process data for our legitimate business interests, such as improving our services and marketing, where this does not override your fundamental rights and freedoms.
We may process data when required by law, such as for tax and accounting purposes.
If you are located in the European Economic Area (EEA), you have the following rights:
You have the right to request a copy of the personal data we hold about you. We will provide this information within one month of your request.
You have the right to request that we correct any inaccurate personal data or complete any incomplete data we hold about you.
You have the right to request that we delete your personal data in certain circumstances, such as when the data is no longer necessary for its original purpose or you withdraw consent.
You have the right to request that we limit how we use your data in certain circumstances, such as while we verify its accuracy.
You have the right to receive your personal data in a structured, commonly used, machine-readable format and to transmit it to another controller.
You have the right to object to processing based on legitimate interests or for direct marketing purposes.
You have the right not to be subject to decisions based solely on automated processing, including profiling, that produce legal effects. We do not currently use automated decision-making.
As an Australian company, data transferred outside the EEA is protected by:
While we are not required to appoint a Data Protection Officer, we have designated a privacy contact to handle all data protection matters:
Email: [email protected]
In the event of a personal data breach that poses a risk to your rights and freedoms, we will notify the relevant supervisory authority within 72 hours. If the breach is likely to result in a high risk to your rights, we will also notify you directly.
To exercise any of your rights under GDPR, please contact us with:
We will respond to your request within one month. In complex cases, we may extend this by a further two months, in which case we will inform you.
If you are not satisfied with how we handle your data or your request, you have the right to lodge a complaint with a supervisory authority. For EEA residents, this is typically the data protection authority in your country of residence.
For any GDPR-related enquiries, please contact us:
Email: [email protected]
Address: Level 3, 42 Oxford Street, Surry Hills, Sydney NSW 2010