This content contains promotional material

GDPR Information

Last updated: 16 June 2026

This page provides information about how vivid-rain complies with the General Data Protection Regulation (GDPR) for visitors from the European Economic Area (EEA) and the United Kingdom.

Data Controller

vivid-rain acts as the data controller for personal information collected through this website. Our contact details are:

vivid-rain
42 Harbour Street
Sydney NSW 2000
Australia
Email: [email protected]

Legal Basis for Processing

We process personal data under the following legal bases:

Consent

When you submit an enquiry through our contact form, you consent to us processing your information to respond to your request. You may withdraw consent at any time by contacting us.

Legitimate Interests

We may process data based on our legitimate interests in:

Contractual Necessity

When you book our services, we process your data as necessary to fulfil our contractual obligations to you.

Your Rights Under GDPR

If you are located in the EEA or UK, you have the following rights regarding your personal data:

Right of Access

You have the right to request a copy of the personal data we hold about you. We will respond to such requests within one month.

Right to Rectification

You have the right to request correction of any inaccurate or incomplete personal data we hold about you.

Right to Erasure

You have the right to request deletion of your personal data in certain circumstances, including when the data is no longer necessary for the purposes for which it was collected.

Right to Restrict Processing

You have the right to request that we restrict the processing of your personal data in certain circumstances, such as when you contest the accuracy of the data.

Right to Data Portability

You have the right to receive your personal data in a structured, commonly used, and machine-readable format, and to transmit that data to another controller.

Right to Object

You have the right to object to processing of your personal data based on legitimate interests. We will stop processing unless we can demonstrate compelling legitimate grounds.

Rights Related to Automated Decision-Making

We do not use automated decision-making or profiling that produces legal effects or similarly significant effects on you.

Exercising Your Rights

To exercise any of these rights, please contact us at [email protected]. We may need to verify your identity before processing your request. We will respond to valid requests within one month, though this period may be extended by two months for complex requests.

International Data Transfers

As we are based in Australia, data may be transferred outside the EEA. Australia is recognised by the European Commission as providing an adequate level of data protection. For any other transfers, we ensure appropriate safeguards are in place.

Data Retention

We retain personal data only for as long as necessary to fulfil the purposes for which it was collected. Specific retention periods are outlined in our Privacy Policy.

Data Security

We implement appropriate technical and organisational measures to protect personal data against unauthorised access, alteration, disclosure, or destruction. These measures are regularly reviewed and updated.

Data Breaches

In the event of a data breach that is likely to result in a risk to your rights and freedoms, we will notify the relevant supervisory authority within 72 hours and, where required, notify affected individuals without undue delay.

Complaints

If you believe we have not handled your personal data properly, you have the right to lodge a complaint with a supervisory authority. For EEA residents, this is typically the data protection authority in your country of residence. For UK residents, this is the Information Commissioner's Office (ICO).

Contact for Data Protection Queries

For any questions about how we handle personal data or to exercise your rights, please contact:

Email: [email protected]
Subject line: GDPR Enquiry