Last Updated: June 4, 2026
While summit-puffin.org is based in Australia, we recognize that some of our website visitors may be located in the European Union. This page outlines our commitment to protecting the personal data of EU residents in accordance with the General Data Protection Regulation (GDPR).
We process personal data under the following legal bases:
If you are an EU resident, you have the following rights regarding your personal data:
You have the right to request confirmation of whether we process your personal data and to receive a copy of that data.
You can request correction of inaccurate or incomplete personal data we hold about you.
You can request deletion of your personal data under certain circumstances, including when the data is no longer necessary for the purposes for which it was collected.
You can request that we limit how we use your personal data in specific situations.
You can request to receive your personal data in a structured, commonly used, machine-readable format and have it transmitted to another controller.
You can object to processing of your personal data based on legitimate interests or for direct marketing purposes.
Where processing is based on consent, you have the right to withdraw that consent at any time.
You have the right to lodge a complaint with your local data protection authority if you believe your rights have been violated.
We collect only the personal data necessary to provide our services and improve user experience. This includes:
We retain personal data only as long as necessary to fulfill the purposes for which it was collected, comply with legal obligations, resolve disputes, and enforce our agreements. Specific retention periods vary depending on the type of data and purpose of processing.
We implement appropriate technical and organizational measures to protect your personal data against unauthorized or unlawful processing, accidental loss, destruction, or damage. These measures are regularly reviewed and updated as necessary.
As we are based in Australia, your personal data may be transferred to and processed in Australia. While Australia is not covered by an EU adequacy decision, we ensure appropriate safeguards are in place to protect your data in accordance with GDPR requirements.
We work with carefully selected service providers who may process personal data on our behalf. These processors are contractually bound to protect your data and use it only for specified purposes in compliance with GDPR.
We use cookies and similar technologies with your consent. You can manage your cookie preferences through our cookie banner and browser settings. For detailed information, please see our Cookies Policy.
We may update this GDPR compliance statement periodically. Material changes will be communicated through our website with an updated revision date.
To exercise any of your GDPR rights or if you have questions about our data processing practices, please contact us at:
Email: [email protected]
Address: 127 Brunswick Street, Fitzroy, VIC 3065, Melbourne, Australia
We will respond to your request within one month of receipt. In complex cases, we may extend this period by an additional two months, in which case we will inform you of the extension and reasons for delay.
For GDPR-related inquiries, you may contact our data protection representative at [email protected]