General Data Protection Regulation (GDPR)

While Dalkit primarily targets the Australian market and is committed to compliance with the Australian Privacy Principles (APPs), we recognize the importance of the General Data Protection Regulation (Regulation (EU) 2016/679), which governs data protection for individuals within the European Union (EU) and the European Economic Area (EEA).This policy confirms Dalkit's commitment to respecting the rights afforded by the GDPR, particularly where our processing activities may involve individuals located in the EU/EEA.

1. Scope and Applicability

The GDPR is relevant to Dalkit because it applies to any organization, regardless of its location (such as our Brazilian headquarters or Australian operations), that:

  • Offers goods or services to individuals in the EU/EEA.
  • Monitors the behavior of individuals in the EU/EEA (e.g., through website tracking).

Should Dalkit process the personal data of individuals located in the EU/EEA, we commit to adhering to the core principles and rights of the GDPR.

2. Core GDPR Principles

We process data in line with the following key principles:

  • Lawfulness, Fairness, and Transparency: Data is processed legally, fairly, and transparently, as detailed in our Privacy Policy.
  • Purpose Limitation: Data is collected only for specified, explicit, and legitimate purposes (primarily order fulfillment and customer service).
  • Data Minimisation: We collect only the data strictly necessary for our purposes.
  • Accuracy: We take reasonable steps to ensure data is accurate and up-to-date.
  • Storage Limitation: Data is kept only for as long as necessary for the stated purposes (e.g., tax compliance).
  • Integrity and Confidentiality: Data is processed securely, using strong encryption (SSL).

3. Data Subject Rights (EU/EEA Residents)

If you are a resident of the EU/EEA, you have specific rights concerning your personal data that Dalkit is prepared to honor upon valid request:

GDPR Right Description How to Exercise
Right to be Informed You have the right to clear, transparent, and easily understandable information about how we use your personal data (covered by our Privacy Policy). See Section 4 below for contact.
Right of Access You can request access to your personal data we hold. See Section 4 below for contact.
Right to Rectification You can request correction of inaccurate or incomplete personal data. See Section 4 below for contact.
Right to Erasure The "Right to be Forgotten" allows you to request the deletion of your personal data, provided there is no legal obligation to retain it. See Section 4 below for contact.
Right to Restrict Processing You can request that we limit the way we use your data. See Section 4 below for contact.
Right to Data Portability You can request to receive your data in a structured, commonly used, and machine-readable format. See Section 4 below for contact.
Right to Object You can object to the processing of your personal data, particularly for direct marketing purposes. Use the unsubscribe link in emails or contact us.

4. Exercising Your Rights and Contact Information

To exercise any of your rights under the GDPR, or for questions regarding our data processing, please contact us.We will verify your identity to ensure the security of your data before processing any request.