GDPR Rights and Data Protection

Last Updated: January 2025

Effective Date: January 1, 2025

1. Introduction

This page explains your rights under the General Data Protection Regulation (GDPR) and how we protect your personal data at aeroglints.com. We are committed to respecting your privacy rights and complying with all applicable data protection laws.

The GDPR gives individuals in the European Union specific rights regarding their personal data. Even if you are outside the EU, we extend many of these protections to all our users.

2. Data Controller Information

Data Controller: aeroglints.com company

Address: 188 Palmer Street, Glenbrook, NSW 2773, Australia

Contact Email: support@aeroglints.com

Data Protection Officer: Available at info@aeroglints.com

3. Your GDPR Rights

Under GDPR, you have the following rights regarding your personal data:

3.1 Right to Access

You have the right to:

• Know whether we process your personal data
• Request a copy of your personal data
• Receive information about how we use your data
• Know who we share your data with
• Understand how long we keep your data

How to exercise: Email support@aeroglints.com with subject line "Data Access Request"

Response time: We will respond within 30 days

3.2 Right to Rectification

You have the right to:

• Correct inaccurate personal data
• Complete incomplete personal data
• Update outdated information

How to exercise: Email support@aeroglints.com with the corrections needed

Response time: We will make corrections within 30 days

3.3 Right to Erasure (Right to be Forgotten)

You have the right to request deletion of your personal data when:

• The data is no longer necessary for its original purpose
• You withdraw consent and there is no other legal basis for processing
• You object to processing and there are no overriding legitimate grounds
• The data has been unlawfully processed
• The data must be erased to comply with legal obligations

How to exercise: Email support@aeroglints.com with subject line "Data Deletion Request"

Response time: We will process deletion within 30 days

Note: Some data may be retained if required by law or for legitimate business purposes

3.4 Right to Restriction of Processing

You have the right to restrict how we use your data when:

• You contest the accuracy of the data
• Processing is unlawful but you don't want data deleted
• We no longer need the data but you need it for legal claims
• You have objected to processing pending verification

How to exercise: Email support@aeroglints.com with your restriction request

Effect: We will only store your data and process it with your consent or for legal purposes

3.5 Right to Data Portability

You have the right to:

• Receive your personal data in a structured, commonly used format
• Transmit your data to another controller
• Have your data transmitted directly to another controller where technically feasible

How to exercise: Email support@aeroglints.com with subject line "Data Portability Request"

Format: We will provide data in JSON or CSV format

Response time: Within 30 days

3.6 Right to Object

You have the right to object to processing of your personal data when:

• Processing is based on legitimate interests
• Processing is for direct marketing purposes
• Processing is for scientific or historical research

How to exercise: Email support@aeroglints.com with your objection

Effect: We will stop processing unless we can demonstrate compelling legitimate grounds

3.7 Rights Related to Automated Decision-Making

You have the right not to be subject to decisions based solely on automated processing that produces legal effects or similarly significant effects.

Our practice: We do not use automated decision-making that significantly affects users

3.8 Right to Withdraw Consent

When processing is based on consent, you have the right to:

• Withdraw consent at any time
• Withdraw consent as easily as it was given

How to exercise: Email support@aeroglints.com or use opt-out links in communications

Effect: We will stop processing your data for that purpose going forward

4. How We Process Your Data

4.1 Legal Basis for Processing

We process your personal data based on:

• Consent: When you explicitly agree to data processing
• Contract: When necessary to provide services you requested
• Legal Obligation: When required by law
• Legitimate Interests: When necessary for our business operations and not overridden by your rights

4.2 Types of Data We Collect

Personal Data:

• Name and email address (when provided)
• Account credentials
• Contact information

Usage Data:

• IP address and location data
• Browser and device information
• Pages visited and actions taken
• Game usage statistics

Cookie Data:

• Essential cookies for site functionality
• Analytics cookies (with consent)
• Preference cookies

4.3 How Long We Keep Your Data

• Account Data: Until account deletion or 3 years of inactivity
• Contact Messages: 2 years after last contact
• Analytics Data: 26 months in aggregated form
• Cookie Data: As specified in cookie settings
• Legal Records: As required by law

5. Children's Data Protection

We take special care to protect children's data:

• We do not knowingly collect data from children under 13 without parental consent
• Parents can access, modify, or delete their child's data
• We minimize data collection from children
• Children's data is never used for marketing purposes
• We comply with COPPA and similar child protection laws

6. Data Security Measures

We implement appropriate technical and organizational measures:

• SSL/TLS encryption for data transmission
• Encrypted storage of sensitive data
• Regular security audits and updates
• Access controls and authentication
• Employee training on data protection
• Incident response procedures

7. International Data Transfers

Your data may be transferred to countries outside the EU. When this occurs:

• We ensure adequate protection through appropriate safeguards
• We use Standard Contractual Clauses approved by the EU Commission
• We verify that recipients provide adequate data protection
• We limit transfers to what is necessary

8. Third-Party Data Sharing

We may share your data with:

• Service Providers: Hosting, analytics, email services (under strict contracts)
• Legal Authorities: When required by law or court order
• Business Transfers: In case of merger or acquisition

We never sell your personal data to third parties.

9. Cookie Management

9.1 Types of Cookies We Use

Essential Cookies:

• Required for website functionality
• Cannot be disabled
• Session management and security

Analytics Cookies:

• Help us understand site usage
• Require your consent
• Can be disabled in settings

Preference Cookies:

• Remember your settings
• Improve user experience
• Can be disabled

9.2 Managing Your Cookie Preferences

You can manage cookies through:

• Our cookie consent banner (appears on first visit)
• Browser settings to block or delete cookies
• Third-party opt-out tools

Note: Disabling cookies may affect website functionality

10. How to Exercise Your Rights

10.1 Making a Request

To exercise any of your GDPR rights:

1. Send an email to support@aeroglints.com
2. Include "GDPR Request" in the subject line
3. Specify which right you want to exercise
4. Provide information to verify your identity
5. Include any relevant details or documentation

10.2 Verification Process

To protect your data, we may ask you to verify your identity by providing:

• Account email address
• Recent activity on your account
• Additional verification questions

10.3 Response Timeline

• We will acknowledge your request within 3 business days
• We will respond to your request within 30 days
• Complex requests may take up to 60 days (we will notify you)
• There is no charge for most requests

11. Data Breach Notification

In case of a data breach that affects your rights:

• We will notify relevant authorities within 72 hours
• We will notify affected users without undue delay
• We will provide information about the breach and steps taken
• We will advise on protective measures you can take

12. Right to Lodge a Complaint

If you believe we have not handled your data properly, you have the right to:

• Contact us first to resolve the issue
• Lodge a complaint with your local data protection authority
• Contact the Australian Information Commissioner (for Australian residents)
• Seek legal remedies through courts

EU Residents: You can find your data protection authority at edpb.europa.eu

Australian Residents: Office of the Australian Information Commissioner at www.oaic.gov.au

13. Updates to This Page

We may update this GDPR information to reflect:

• Changes in data protection laws
• New processing activities
• Improvements to our practices

Significant changes will be communicated through email or website notice.

14. Additional Resources

For more information about data protection:

• Privacy Policy - Detailed privacy practices
• Terms of Use - Terms and conditions
• GDPR Official Website - Learn more about GDPR

15. Contact Information

For any questions about your GDPR rights or data protection:

• Primary Contact: support@aeroglints.com
• Data Protection Officer: info@aeroglints.com
• General Contact: contact@aeroglints.com
• Postal Address: 188 Palmer Street, Glenbrook, NSW 2773, Australia

We aim to respond to all inquiries within 2 business days.

16. Language and Interpretation

This document is provided in English. If translated into other languages, the English version prevails in case of any discrepancy.