Information for European Union residents about their data protection rights.
Last updated: January 2024
Although AurenzaTrustPro is an Australian company, we are committed to complying with the General Data Protection Regulation (GDPR) for any personal data we process belonging to individuals in the European Union.
This page supplements our Privacy Policy with additional information specific to GDPR requirements.
AurenzaTrustPro acts as the data controller for personal information collected through our website and service delivery. Our contact details are:
AurenzaTrustPro
Level 18, 123 Collins Street
Melbourne VIC 3000
Australia
Email: [email protected]
We process personal data under one or more of the following lawful bases:
As an EU resident, you have the following rights regarding your personal data:
You have the right to request a copy of the personal data we hold about you and information about how we process it.
You have the right to request correction of any inaccurate or incomplete personal data we hold about you.
You have the right to request deletion of your personal data in certain circumstances, such as when the data is no longer necessary for the purposes for which it was collected.
You have the right to request that we restrict the processing of your personal data in certain circumstances.
You have the right to receive your personal data in a structured, commonly used, and machine-readable format, and to transmit that data to another controller.
You have the right to object to processing of your personal data based on legitimate interests or for direct marketing purposes.
You have the right not to be subject to decisions based solely on automated processing that produce legal effects concerning you. We do not currently use automated decision-making in our services.
As an Australian company, any personal data transferred from the EU will be transferred to Australia. We ensure that appropriate safeguards are in place to protect your data, including:
We retain personal data only for as long as necessary to fulfil the purposes for which it was collected, or as required by applicable laws. When personal data is no longer needed, we securely delete or anonymise it.
We implement appropriate technical and organisational measures to ensure a level of security appropriate to the risk, including:
In the event of a personal data breach that poses a risk to your rights and freedoms, we will notify the relevant supervisory authority within 72 hours of becoming aware of the breach. Where the breach is likely to result in a high risk to your rights and freedoms, we will also notify you directly.
To exercise any of your GDPR rights, please contact us at:
Email: [email protected]
We will respond to your request within one month. In complex cases, this may be extended by a further two months, and we will inform you of any such extension.
If you believe that your data protection rights have been violated, you have the right to lodge a complaint with a supervisory authority in the EU Member State of your habitual residence, place of work, or place of the alleged infringement.
We may update this GDPR information from time to time. Any changes will be posted on this page with an updated revision date.