GDPR Compliance

Last updated: April 2026

Lumino Horizon Pty Ltd is committed to protecting the privacy and rights of individuals in accordance with the General Data Protection Regulation (GDPR). This page provides information specific to the rights of EU/EEA residents who interact with our services.

Applicability

The GDPR applies when we process personal data of individuals located in the European Economic Area (EEA) or when we offer goods or services to such individuals. While our primary operations are in Australia, we recognise that some website visitors or clients may be EU/EEA residents, and we extend these rights accordingly.

Data Controller

For the purposes of GDPR, the data controller is:

Lumino Horizon Pty Ltd
Level 12, 240 Queen Street
Brisbane QLD 4000, Australia
Email: [email protected]

Legal Basis for Processing

We process personal data under the following legal bases:

  • Consent: Where you have given clear consent for us to process your personal data for a specific purpose, such as receiving marketing communications.
  • Contractual necessity: Where processing is necessary for the performance of a contract with you or to take steps at your request before entering into a contract.
  • Legitimate interests: Where processing is necessary for our legitimate business interests, provided these are not overridden by your rights and interests.
  • Legal obligation: Where processing is necessary for compliance with a legal obligation to which we are subject.

Your Rights Under GDPR

If you are an EU/EEA resident, you have the following rights regarding your personal data:

Right of Access

You have the right to request a copy of the personal data we hold about you and to receive information about how it is being used.

Right to Rectification

You have the right to request that we correct any inaccurate personal data or complete any incomplete personal data.

Right to Erasure

You have the right to request deletion of your personal data in certain circumstances, such as when the data is no longer necessary for the purpose for which it was collected.

Right to Restrict Processing

You have the right to request that we limit the processing of your personal data in certain circumstances, such as when you contest the accuracy of the data.

Right to Data Portability

You have the right to receive your personal data in a structured, commonly used, machine-readable format and to transmit that data to another controller.

Right to Object

You have the right to object to processing of your personal data based on legitimate interests or for direct marketing purposes.

Rights Related to Automated Decision-Making

You have the right not to be subject to decisions based solely on automated processing that produce legal or similarly significant effects concerning you.

Exercising Your Rights

To exercise any of these rights, please contact us at [email protected] with your request. We may need to verify your identity before processing your request. We will respond to your request within one month, although this period may be extended by two further months where necessary, considering the complexity and number of requests.

International Data Transfers

As an Australian company, personal data you provide to us may be transferred to and stored in Australia. Australia is not subject to an adequacy decision by the European Commission. Where we transfer personal data outside the EEA, we implement appropriate safeguards to ensure an adequate level of data protection, including standard contractual clauses approved by the European Commission.

Data Retention

We retain personal data only for as long as necessary to fulfil the purposes for which it was collected, including to satisfy legal, accounting, or reporting requirements. The specific retention period depends on the nature of the data and the purpose for which it was collected.

Withdrawing Consent

Where we rely on consent as the legal basis for processing, you have the right to withdraw that consent at any time. Withdrawal of consent does not affect the lawfulness of processing based on consent before its withdrawal.

Lodging a Complaint

If you believe that we have not handled your personal data in accordance with GDPR, you have the right to lodge a complaint with a supervisory authority. In Australia, complaints regarding data protection can be directed to the Office of the Australian Information Commissioner (OAIC). For EU residents, you may also contact your local data protection authority.

Updates to This Notice

We may update this GDPR compliance notice from time to time. Any changes will be posted on this page with an updated revision date.

Contact

For questions or concerns regarding GDPR compliance:

Data Protection Contact
Lumino Horizon Pty Ltd
Level 12, 240 Queen Street
Brisbane QLD 4000, Australia
Email: [email protected]

We use cookies to enhance your experience on our website. By continuing to browse, you agree to our use of cookies. Learn more

Cookie Preferences

Essential Cookies

Required for the website to function properly. Cannot be disabled.

Analytics Cookies

Help us understand how visitors interact with our website.

Marketing Cookies

Used to deliver relevant advertisements and track campaign performance.