GDPR Compliance Statement

Last Updated: May 11, 2026

1. Our Commitment

While lively-harbor is based in Australia, we recognize the importance of the European Union's General Data Protection Regulation (GDPR) and are committed to protecting the privacy rights of all users, regardless of location.

2. Legal Basis for Processing

We process personal data only when we have a legal basis to do so:

• Consent: You have given clear consent for us to process your personal data for a specific purpose
• Contract: Processing is necessary for a contract we have with you
• Legal Obligation: Processing is necessary for us to comply with the law
• Legitimate Interests: Processing is necessary for our legitimate interests or those of a third party (unless overridden by your rights)

3. Your Rights Under GDPR

If you are located in the European Economic Area (EEA), you have the following rights:

3.1 Right to Access

You have the right to request copies of your personal data.

3.2 Right to Rectification

You have the right to request correction of inaccurate or incomplete personal data.

3.3 Right to Erasure

You have the right to request deletion of your personal data under certain conditions.

3.4 Right to Restrict Processing

You have the right to request that we restrict the processing of your personal data under certain conditions.

3.5 Right to Data Portability

You have the right to request transfer of your data to another organization or directly to you under certain conditions.

3.6 Right to Object

You have the right to object to our processing of your personal data under certain conditions.

3.7 Rights Related to Automated Decision-Making

You have the right not to be subject to decisions based solely on automated processing, including profiling, which produces legal effects or similarly significantly affects you.

4. Data Retention

We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, including:

• Service delivery and customer relationship management
• Legal, accounting, or reporting requirements
• Dispute resolution

When personal data is no longer needed, we securely delete or anonymize it.

5. International Data Transfers

Your personal data may be transferred to and processed in Australia. We ensure appropriate safeguards are in place for such transfers, including:

• Standard contractual clauses approved by the European Commission
• Adequacy decisions where applicable
• Other legally valid transfer mechanisms

6. Data Security

We implement appropriate technical and organizational measures to ensure a level of security appropriate to the risk, including:

• Encryption of personal data
• Regular security assessments
• Access controls and authentication
• Staff training on data protection

7. Data Protection Officer

For GDPR-related inquiries, you can contact our Data Protection Officer at:

Email: [email protected]

8. Complaints

If you are located in the EEA and believe we have not handled your personal data in accordance with GDPR, you have the right to lodge a complaint with your local supervisory authority.

9. Exercising Your Rights

To exercise any of your GDPR rights, please contact us at:

Email: [email protected]
Address: Level 12, 485 La Trobe Street, Melbourne VIC 3000, Australia

We will respond to your request within one month. In complex cases, we may extend this period by two additional months and will inform you of such extension.

10. Updates to This Statement

We may update this GDPR Compliance Statement periodically. We will notify you of any material changes by posting the updated statement on our website.