Last Updated: May 11, 2026
Although Bold Repair is an Australian-based business, we recognize that some of our website visitors may be located in the European Economic Area (EEA). We are committed to complying with the General Data Protection Regulation (GDPR) for all EEA residents who interact with our services.
We process personal data only when we have a legal basis to do so. Our legal bases include:
If you are located in the EEA, you have the following rights:
You have the right to request confirmation of whether we process your personal data and to obtain a copy of that data.
You may request correction of inaccurate or incomplete personal data we hold about you.
You may request deletion of your personal data in certain circumstances, including when:
You may request that we limit the processing of your personal data in certain situations, such as while we verify the accuracy of contested data.
Where technically feasible, you have the right to receive your personal data in a structured, commonly used, and machine-readable format and to transmit it to another controller.
You have the right to object to processing of your personal data based on legitimate interests or for direct marketing purposes.
Where we rely on consent as the legal basis for processing, you may withdraw that consent at any time.
You have the right to lodge a complaint with a supervisory authority in the EEA, particularly in your country of residence, workplace, or where an alleged infringement occurred.
For GDPR-related inquiries, you may contact our data protection representative at:
Email: [email protected]
Subject Line: GDPR Inquiry
As an Australian business, your personal data may be transferred to and processed in Australia. Australia has been recognized by the European Commission as providing adequate protection for personal data. We ensure all transfers comply with GDPR requirements.
We retain personal data only for as long as necessary to fulfill the purposes for which it was collected or to comply with legal obligations. When determining retention periods, we consider:
We implement appropriate technical and organizational measures to ensure a level of security appropriate to the risk, including:
We do not use automated decision-making or profiling that produces legal effects or similarly significantly affects you.
We use cookies and similar technologies on our website. You can control and manage cookies through your browser settings. For detailed information, please see our Cookies Policy.
When we engage third-party service providers to process personal data on our behalf, we ensure they:
In the event of a personal data breach that is likely to result in a risk to your rights and freedoms, we will notify the relevant supervisory authority within 72 hours of becoming aware of the breach. We will also inform affected individuals without undue delay if the breach is likely to result in a high risk to their rights and freedoms.
We do not knowingly process personal data of children under 16 years of age. If we become aware that we have collected such data without parental consent, we will delete it promptly.
We may update this GDPR Compliance Statement to reflect changes in our practices or legal requirements. Material changes will be communicated through our website or directly to affected individuals.
To exercise any of your GDPR rights, please contact us at:
Email: [email protected]
Subject: GDPR Rights Request
Include: Your full name, contact information, and specific right you wish to exercise
We will respond to your request within one month of receipt. In complex cases, we may extend this period by two additional months and will inform you of the extension.
You will not typically be required to pay a fee to exercise your GDPR rights. However, we may charge a reasonable fee if your request is clearly unfounded, repetitive, or excessive. We may also refuse to comply with such requests in these circumstances.