Last updated: 16 June 2026
This page provides information about how lucid-ocean complies with the General Data Protection Regulation (GDPR) for visitors and clients from the European Economic Area (EEA).
Although lucid-ocean is based in Australia, we are committed to protecting the privacy and rights of all our website visitors and clients, including those located in the European Economic Area. We have implemented measures to ensure compliance with GDPR requirements when processing personal data of EEA residents.
We process personal data only when we have a lawful basis to do so. The legal bases we rely on include:
If you are located in the EEA, you have the following rights regarding your personal data:
Right of Access: You have the right to request a copy of the personal data we hold about you.
Right to Rectification: You have the right to request that we correct any inaccurate personal data we hold about you.
Right to Erasure: You have the right to request that we delete your personal data in certain circumstances.
Right to Restrict Processing: You have the right to request that we restrict the processing of your personal data in certain circumstances.
Right to Data Portability: You have the right to receive your personal data in a structured, commonly used, and machine-readable format.
Right to Object: You have the right to object to processing of your personal data in certain circumstances, including processing for direct marketing purposes.
Rights Related to Automated Decision Making: You have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning you or similarly significantly affects you.
To exercise any of these rights, please contact us using the details provided below. We will respond to your request within one month of receipt. In some cases, we may extend this period by up to two months if your request is complex or we receive a high volume of requests.
We may ask you to verify your identity before fulfilling your request. There is no fee for exercising your rights, although we may charge a reasonable fee or refuse to act on a request if it is manifestly unfounded or excessive.
As we are based in Australia, personal data you provide to us may be transferred to and processed in Australia. Australia is not considered to provide an adequate level of data protection under GDPR. However, we have implemented appropriate safeguards to protect your personal data, including obtaining your explicit consent for such transfers where required.
We retain personal data only for as long as necessary to fulfil the purposes for which it was collected. When determining retention periods, we consider the amount, nature, and sensitivity of the data, the potential risk of harm from unauthorised use or disclosure, and applicable legal requirements.
We have implemented appropriate technical and organisational measures to protect personal data against accidental or unlawful destruction, loss, alteration, unauthorised disclosure, or access. These measures are designed to provide a level of security appropriate to the risks presented by processing personal data.
If you are located in the EEA and believe that our processing of your personal data violates GDPR, you have the right to lodge a complaint with a supervisory authority in the EEA member state of your habitual residence, place of work, or place of the alleged infringement.
For any questions about our GDPR compliance or to exercise your rights, please contact us at:
lucid-ocean
45 Riverside Drive
Brisbane QLD 4000
Australia
Email: [email protected]