GDPR Compliance Statement

For European Union residents and visitors, Dusky Rift Prestige complies with the General Data Protection Regulation (GDPR). This statement outlines your rights and how we process your data in accordance with GDPR requirements.

1. Legal Basis for Processing

We process personal data under the following legal bases: contract performance to fulfill vehicle rental agreements, legal obligation to comply with Australian and EU regulations, legitimate interests to improve services and prevent fraud, and consent for marketing communications (withdrawable anytime).

2. Your GDPR Rights

As an EU resident, you have the right to: access (obtain confirmation of data processing and access to your data), rectification (correct inaccurate personal data), erasure (request deletion of your personal data), restrict processing (limit how we use your data), data portability (receive your data in a structured format), object to certain types of processing, and withdraw consent for consent-based processing.

3. Data Transfers

Your data is primarily stored in Australia. When data is transferred outside the EU, we use Standard Contractual Clauses approved by the EU Commission. Data recipients are contractually bound to GDPR-equivalent protections. Transfers are limited to what's necessary for service delivery.

4. Data Retention

We retain personal data only as long as necessary: booking data for 7 years (legal requirements), marketing data until consent withdrawal, website analytics for 24 months, and communications for 3 years.

5. Data Protection Officer

For GDPR-related inquiries:

Data Protection Officer
Dusky Rift Prestige Pty Ltd
Email: [email protected]
Phone: +61 2 9876 5432

6. Supervisory Authority

You have the right to lodge a complaint with the Office of the Australian Information Commissioner (OAIC) or your local EU supervisory authority. We encourage you to contact us first to resolve concerns.