Home

GDPR Compliance

Last updated: 29/07/2025

1. Introduction

While BangBangWin is primarily based in Australia and operates under Australian privacy laws, we recognize the importance of data protection for all our users, including those in the European Union (EU). This GDPR compliance statement outlines how we handle personal data in accordance with the General Data Protection Regulation (GDPR) for EU residents.

This document supplements our Privacy Policy and specifically addresses GDPR requirements for EU users.

2. Legal Basis for Processing

We process your personal data based on the following legal grounds:

  • Consent: When you explicitly agree to our data processing activities
  • Contract Performance: To provide our services and fulfill our obligations
  • Legal Obligation: To comply with applicable laws and regulations
  • Legitimate Interest: To improve our services and prevent fraud

3. Your GDPR Rights

As an EU resident, you have the following rights under GDPR:

Right to Access

You can request a copy of your personal data and information about how we process it.

Right to Rectification

You can request correction of inaccurate or incomplete personal data.

Right to Erasure (Right to be Forgotten)

You can request deletion of your personal data, subject to legal requirements.

Right to Restrict Processing

You can request limitation of how we process your personal data.

Right to Data Portability

You can request your personal data in a structured, machine-readable format.

Right to Object

You can object to processing based on legitimate interests or direct marketing.

Rights Related to Automated Decision Making

You have rights regarding automated processing and profiling of your data.

4. Exercising Your Rights

To exercise your GDPR rights:

  • Contact us at gdpr@bangbangwin.com
  • Provide sufficient information to identify you
  • Specify which right(s) you wish to exercise
  • We will respond within 30 days (may be extended to 60 days for complex requests)

5. Data Transfers Outside the EU

As we are based in Australia, your personal data may be transferred outside the EU. We ensure appropriate safeguards are in place:

  • Adequacy decisions by the European Commission
  • Standard Contractual Clauses (SCCs)
  • Binding Corporate Rules (BCRs)
  • Other approved transfer mechanisms

6. Data Protection Officer

While not legally required for our operations, we have designated a Data Protection Officer to handle GDPR-related inquiries:

Email: dpo@bangbangwin.com

Subject Line: "GDPR Inquiry"

7. Data Breach Notification

In the event of a personal data breach that poses a risk to your rights and freedoms, we will:

  • Notify the relevant EU supervisory authority within 72 hours
  • Inform affected individuals without undue delay
  • Document all breaches and our response measures
  • Take immediate steps to mitigate any adverse effects

8. Cookies and Consent

For EU users, we implement a consent management system that:

  • Requires explicit consent before setting non-essential cookies
  • Allows granular control over different types of cookies
  • Provides easy withdrawal of consent
  • Maintains records of consent for audit purposes

9. Supervisory Authority

If you believe we have not addressed your GDPR rights adequately, you have the right to lodge a complaint with your local EU supervisory authority. You can find your authority at:

European Data Protection Board - Member States

10. Updates to GDPR Compliance

We regularly review and update our GDPR compliance practices to ensure continued adherence to EU data protection requirements. Any material changes will be communicated to affected users.

11. Contact Information

General Privacy Inquiries: privacy@bangbangwin.com

GDPR Specific Inquiries: gdpr@bangbangwin.com

Data Protection Officer: dpo@bangbangwin.com

Address: [Your Australian Business Address]

EU Representative (if required):
[EU Representative Details - if applicable]