GDPR Compliance Statement

Last updated: May 13, 2026

Our Commitment to Data Protection

While Laser Mesh operates primarily in Australia, we recognize that the General Data Protection Regulation (GDPR) establishes important privacy rights for individuals in the European Union. We apply these principles to protect all personal data we process.

Legal Basis for Processing

We process personal data under the following legal bases:

• Consent: When you submit forms or accept cookies on our website
• Contract Performance: When providing requested services and solutions
• Legitimate Interest: For business operations, security, and improvement of services
• Legal Obligation: To comply with applicable laws and regulations

Your GDPR Rights

If GDPR applies to you, you have the following rights:

Right to Access

You may request confirmation of whether we process your personal data and receive a copy of that data.

Right to Rectification

You may request correction of inaccurate or incomplete personal information.

Right to Erasure

You may request deletion of your personal data in certain circumstances, subject to legal retention requirements.

Right to Restriction

You may request limitation of processing in specific situations.

Right to Data Portability

You may request transfer of your data in a structured, commonly used format.

Right to Object

You may object to processing based on legitimate interests or for direct marketing purposes.

Rights Related to Automated Decision-Making

We do not use automated decision-making or profiling that produces legal or similarly significant effects.

Data Controller Information

Laser Mesh acts as the data controller for personal information collected through our website and services.

Contact details:
Email: [email protected]
Address: Level 12, 485 La Trobe Street, Melbourne VIC 3000, Australia

Data Processing Activities

Website Visitors

• Data collected: IP address, browser type, pages viewed, time spent
• Purpose: Website functionality, security, and analytics
• Retention: Analytics data retained for 24 months

Service Inquiries

• Data collected: Name, email, company, project requirements
• Purpose: Responding to inquiries and providing requested services
• Retention: 7 years for business records

Customer Relationships

• Data collected: Contact details, project specifications, communications
• Purpose: Service delivery, support, and contract management
• Retention: Duration of relationship plus 7 years

Data Transfers

Personal data is primarily stored on servers in Australia. If we transfer data to third countries, we ensure appropriate safeguards through:

• Standard contractual clauses approved by the European Commission
• Service providers with adequate data protection certifications
• Other legally recognized transfer mechanisms

Third-Party Processors

We engage limited third-party processors for:

• Website hosting and infrastructure services
• Email communication platforms
• Analytics and website performance tools

All processors are contractually required to maintain appropriate data protection standards.

Data Security Measures

We implement technical and organizational measures including:

• Encryption of data in transit and at rest
• Access controls and authentication requirements
• Regular security assessments and updates
• Staff training on data protection principles
• Incident response procedures

Data Breach Notification

In the event of a data breach that poses a risk to individual rights and freedoms, we will:

• Notify relevant supervisory authorities within 72 hours of discovery
• Inform affected individuals without undue delay if there is high risk
• Document the breach and our response measures

Exercising Your Rights

To exercise any GDPR rights, contact us at [email protected] with your request. We will:

• Verify your identity to protect your information
• Respond within one month (extendable to three months for complex requests)
• Provide information free of charge unless requests are excessive

Supervisory Authority

If you believe your data protection rights have been violated, you have the right to lodge a complaint with your local supervisory authority in the EU.

Policy Updates

We review this GDPR compliance statement annually and update it as necessary to reflect changes in our practices or legal requirements.