GDPR Compliance

Last Updated: June 1, 2026

Our Commitment to GDPR

Packet Roam is committed to complying with the General Data Protection Regulation (GDPR) and protecting the privacy rights of individuals in the European Union and European Economic Area. This page outlines how we meet our GDPR obligations.

Legal Basis for Processing

We process your personal data under the following legal bases:

  • Consent: When you provide explicit consent for specific purposes, such as receiving marketing communications
  • Contract: When processing is necessary to fulfill our contractual obligations to you
  • Legitimate Interests: When processing is necessary for our legitimate business interests, provided your rights do not override these interests
  • Legal Obligation: When processing is required to comply with legal requirements

Your Rights Under GDPR

As a data subject, you have the following rights:

Right to Access

You have the right to request confirmation of whether we process your personal data and to obtain a copy of that data.

Right to Rectification

You can request correction of inaccurate personal data and completion of incomplete data.

Right to Erasure (Right to be Forgotten)

You can request deletion of your personal data when it is no longer necessary for the purposes for which it was collected, or when you withdraw consent.

Right to Restriction of Processing

You can request that we limit the processing of your personal data in certain circumstances.

Right to Data Portability

You have the right to receive your personal data in a structured, commonly used, and machine-readable format and to transmit that data to another controller.

Right to Object

You can object to the processing of your personal data based on legitimate interests or for direct marketing purposes.

Right Not to be Subject to Automated Decision-Making

You have the right not to be subject to decisions based solely on automated processing, including profiling, that produce legal effects or similarly significantly affect you.

Exercising Your Rights

To exercise any of your GDPR rights, please contact us at [email protected]. We will respond to your request within one month. In complex cases, we may extend this period by two additional months, and we will inform you of any such extension.

Data Protection Officer

For questions regarding data protection and GDPR compliance, you can contact our Data Protection Officer:

Email: [email protected]
Subject: GDPR Inquiry / Data Protection Officer

Data Processing Activities

What Data We Collect

  • Contact information (name, email address)
  • Property search preferences and criteria
  • Communication history
  • Website usage data and analytics

How We Use Your Data

  • Providing property consultation services
  • Communicating about property opportunities
  • Improving our services and website
  • Complying with legal obligations

Data Retention

We retain personal data only for as long as necessary to fulfill the purposes for which it was collected or as required by law. After this period, data is securely deleted or anonymized.

International Data Transfers

When we transfer personal data outside the EEA, we ensure appropriate safeguards are in place, such as:

  • Standard Contractual Clauses approved by the European Commission
  • Transfers to countries with adequacy decisions
  • Other legally approved transfer mechanisms

Data Security

We implement appropriate technical and organizational measures to ensure a level of security appropriate to the risk, including:

  • Encryption of personal data in transit and at rest
  • Regular security assessments and audits
  • Access controls and authentication measures
  • Staff training on data protection
  • Incident response procedures

Data Breach Notification

In the event of a personal data breach that is likely to result in a risk to your rights and freedoms, we will notify you without undue delay. We will also notify the relevant supervisory authority within 72 hours of becoming aware of the breach, where required by law.

Third-Party Processors

When we engage third-party service providers to process personal data on our behalf, we ensure they:

  • Process data only on our documented instructions
  • Maintain appropriate security measures
  • Comply with GDPR requirements
  • Have data processing agreements in place

Supervisory Authority

You have the right to lodge a complaint with a supervisory authority, particularly in the EU member state of your habitual residence, place of work, or place of the alleged infringement, if you believe our processing of your personal data violates GDPR.

Updates to This Policy

We may update this GDPR compliance statement to reflect changes in our practices or legal requirements. Material changes will be communicated to affected individuals.

Contact Information

For any questions, concerns, or requests related to GDPR compliance:

Packet Roam
Level 8, 142 Macquarie Street
Sydney NSW 2000
Australia
Email: [email protected]