GDPR Compliance Statement

Last updated: May 20, 2026

Our Commitment to GDPR

Although Flicker Pearl is based in Australia, we recognize that some of our website visitors may be located in the European Union. We are committed to complying with the General Data Protection Regulation (GDPR) for all EU residents who interact with our services.

Legal Basis for Processing

We process personal data under the following legal bases:

  • Consent: When you provide explicit consent for specific processing activities
  • Contract: When processing is necessary to fulfill our service agreement with you
  • Legal Obligation: When we must process data to comply with legal requirements
  • Legitimate Interest: When processing is necessary for our legitimate business interests, balanced against your rights

Your GDPR Rights

If you are an EU resident, you have the following rights under GDPR:

  • Right to Access: Request copies of your personal data
  • Right to Rectification: Request correction of inaccurate data
  • Right to Erasure: Request deletion of your personal data
  • Right to Restrict Processing: Request limitation on how we use your data
  • Right to Data Portability: Receive your data in a structured, machine-readable format
  • Right to Object: Object to processing based on legitimate interests
  • Right to Withdraw Consent: Withdraw consent at any time (without affecting prior processing)

Data Protection Officer

For GDPR-related inquiries, you may contact our data protection representative:

Email: [email protected]

Data Transfers

Personal data collected from EU residents is processed in Australia. We ensure appropriate safeguards are in place for international data transfers in compliance with GDPR requirements.

Data Retention

We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, or as required by law. Specific retention periods vary depending on the type of data and legal requirements.

Security Measures

We implement technical and organizational security measures appropriate to the risks, including:

  • Encryption of data in transit and at rest
  • Access controls and authentication procedures
  • Regular security assessments and updates
  • Staff training on data protection practices

Data Breach Notification

In the event of a data breach affecting EU residents, we will notify the relevant supervisory authority within 72 hours of becoming aware of the breach, and will notify affected individuals without undue delay when required by law.

Automated Decision Making

We do not use automated decision-making or profiling that produces legal effects or similarly significant impacts on individuals.

Third-Party Processing

When we engage third-party service providers to process personal data on our behalf, we ensure they provide sufficient guarantees of GDPR compliance through contractual agreements.

Exercising Your Rights

To exercise any of your GDPR rights, please contact us at:

Email: [email protected]
Address: 127 Garden Vista Boulevard, Brisbane, QLD 4000, Australia

We will respond to your request within one month. In complex cases, we may extend this period by two additional months, and we will inform you of any such extension.

Right to Lodge a Complaint

If you believe we have not adequately addressed your concerns, you have the right to lodge a complaint with your local supervisory authority in the EU.

Changes to This Statement

We may update this GDPR compliance statement periodically. Material changes will be communicated through our website with an updated "Last updated" date.