GDPR Compliance

GDPR: Overview

• BrightCost Secure aligns all data processing with the core GDPR principles of lawfulness, fairness, transparency, data minimisation, and accuracy.
• All EU residents have clear rights over their data, including access, rectification, and deletion requests.
• We operate with a privacy by design and by default mindset in all solution development.

User Rights Summary

• Access and manage your data at any time
• The right to revoke consent or request correction
• Ability to request erasure or restrict processing

Compliance Steps

All personal data is processed on a lawful basis, with explicit consent for marketing or analytical profiling. Vendors and third-party services are reviewed for GDPR compliance.

How We Ensure GDPR Compliance

• Internal Policies: Regular reviews and mandatory staff training on privacy principles and technical controls.
• Data Subject Requests: Clear processes to fulfil rights requests swiftly and efficiently, with secure authentication.
• Contact DPO: For GDPR inquiries, contact our Data Protection Officer at [email protected] or +61 2 9167 4503.