Information on this site is advertising in nature.

GDPR Compliance

Last updated: June 2026

Introduction

cosmic-fox is committed to protecting the personal data of all individuals, including those residing in the European Union (EU) and European Economic Area (EEA). This page outlines how we comply with the General Data Protection Regulation (GDPR) and explains your rights under this regulation.

While our primary operations are based in Australia, we recognise that visitors from the EU/EEA may access our website and we are committed to respecting your data protection rights.

Data Controller

cosmic-fox acts as the data controller for personal information collected through our website and services. Our contact details are:

cosmic-fox
42 Harbour View Drive
Sydney NSW 2000
Australia

Email: [email protected]

Legal Basis for Processing

We process personal data only when we have a lawful basis to do so. The legal bases we rely on include:

  • Consent: Where you have given clear consent for us to process your personal data for a specific purpose, such as receiving marketing communications.
  • Contract: Where processing is necessary for the performance of a contract with you or to take steps at your request before entering into a contract.
  • Legal Obligation: Where processing is necessary to comply with a legal obligation.
  • Legitimate Interests: Where processing is necessary for our legitimate interests or those of a third party, except where such interests are overridden by your rights and interests.

Your Rights Under GDPR

If you are located in the EU/EEA, you have the following rights regarding your personal data:

Right to Access

You have the right to request a copy of the personal data we hold about you and information about how we process it.

Right to Rectification

You have the right to request that we correct any inaccurate personal data or complete any incomplete data we hold about you.

Right to Erasure

You have the right to request that we delete your personal data in certain circumstances, such as when the data is no longer necessary for the purposes for which it was collected.

Right to Restrict Processing

You have the right to request that we restrict the processing of your personal data in certain circumstances, such as when you contest the accuracy of the data.

Right to Data Portability

You have the right to receive your personal data in a structured, commonly used, and machine-readable format, and to transmit that data to another controller.

Right to Object

You have the right to object to processing of your personal data based on legitimate interests, including profiling. You also have the right to object to processing for direct marketing purposes.

Rights Related to Automated Decision-Making

You have the right not to be subject to decisions based solely on automated processing, including profiling, that produce legal effects or similarly significant effects on you.

Exercising Your Rights

To exercise any of your rights under GDPR, please contact us at [email protected]. We will respond to your request within one month. In certain circumstances, we may extend this period by up to two additional months, in which case we will inform you of the extension and the reasons for it.

We may need to verify your identity before processing your request. If we cannot verify your identity, we may ask for additional information.

International Data Transfers

As we are based in Australia, any personal data you provide may be transferred to and processed in Australia. Australia has not received an adequacy decision from the European Commission. However, we implement appropriate safeguards to protect your personal data when it is transferred internationally.

Data Retention

We retain personal data only for as long as necessary to fulfil the purposes for which it was collected, or as required by applicable laws. When personal data is no longer needed, we will securely delete or anonymise it.

Data Security

We implement appropriate technical and organisational measures to protect personal data against unauthorised or unlawful processing, accidental loss, destruction, or damage. These measures include encryption, access controls, and regular security assessments.

Data Breach Notification

In the event of a personal data breach that is likely to result in a high risk to your rights and freedoms, we will notify you without undue delay, as required by GDPR.

Complaints

If you believe that your data protection rights have been violated, you have the right to lodge a complaint with a supervisory authority. For EU/EEA residents, this would be the data protection authority in your country of residence.

We encourage you to contact us first so that we can try to resolve your concerns directly.

Changes to This Policy

We may update this GDPR compliance information from time to time. Any changes will be posted on this page with an updated revision date.

Contact Us

For any questions about our GDPR compliance or to exercise your data protection rights, please contact us at:

cosmic-fox
42 Harbour View Drive
Sydney NSW 2000
Australia

Email: [email protected]

We use cookies to enhance your browsing experience and analyse site traffic. By continuing to use this site, you consent to our use of cookies. Learn more