Last updated: January 2026
The General Data Protection Regulation (GDPR) is a comprehensive data protection law that regulates how companies collect, process, and store personal data of individuals within the European Union (EU) and European Economic Area (EEA). At Luminous Drift Reels, we are fully committed to complying with GDPR requirements and protecting the privacy rights of our users.
This GDPR Compliance Statement outlines our approach to data protection, the rights of our users, and how we implement GDPR principles in our virtual entertainment platform operations.
We are committed to protecting the privacy and personal data of all our users, particularly those located within the EU/EEA. Our GDPR compliance program includes:
Under GDPR, we process personal data based on the following lawful bases:
We obtain explicit consent for non-essential cookies and marketing communications. Users can withdraw their consent at any time without affecting the lawfulness of processing based on consent before its withdrawal.
We process personal data necessary for the performance of our services, including account creation, service delivery, and customer support.
We process personal data to comply with legal obligations, including age verification requirements and regulatory compliance.
We process personal data based on our legitimate interests in improving our services, preventing fraud, and ensuring platform security, provided these interests are not overridden by your rights and interests.
You have the right to obtain confirmation as to whether or not personal data concerning you is being processed, and, where that is the case, access to the personal data and information about how it is being used.
You have the right to have inaccurate personal data about you corrected without undue delay. Taking into account the purposes of the processing, you also have the right to have incomplete personal data completed.
You have the right to have your personal data erased without undue delay where the personal data is no longer necessary for the purposes for which it was collected, or where you have withdrawn consent and there is no other legal ground for processing.
You have the right to restrict the processing of your personal data in certain circumstances, such as when you contest the accuracy of the data or when the processing is unlawful.
You have the right to receive the personal data concerning you in a structured, commonly used, and machine-readable format and have the right to transmit that data to another controller without hindrance.
You have the right to object to the processing of your personal data based on legitimate interests or for direct marketing purposes. We will stop processing your data unless we can demonstrate compelling legitimate grounds that override your interests.
You have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning you or significantly affects you, unless certain conditions are met.
We have appointed a Data Protection Officer (DPO) who is responsible for overseeing our data protection strategy and ensuring compliance with GDPR requirements. Our DPO can be contacted at:
Email: dpo@LuminousDriftReels.com
The DPO is responsible for monitoring compliance with GDPR, providing advice on data protection obligations, and acting as a contact point for data subjects and supervisory authorities.
As a company based in New Zealand serving users globally, we may transfer your personal data outside the EU/EEA. When we do so, we ensure that appropriate safeguards are in place to protect your data in accordance with GDPR requirements:
We will not transfer your personal data to third countries without ensuring that adequate protection measures are in place.
We adhere to the principles of data minimization and storage limitation under GDPR:
We only collect personal data that is adequate, relevant, and limited to what is necessary for the purposes for which it is processed. We do not collect excessive data and regularly review our data collection practices.
We keep personal data only for as long as necessary to fulfill the purposes for which it was collected, including for the purposes of satisfying any legal, accounting, or reporting requirements. When personal data is no longer needed, we securely delete or anonymize it.
We implement appropriate technical and organizational measures to ensure a level of security appropriate to the risk, including:
We regularly review and update our security measures to ensure they remain effective against evolving threats.
In the event of a personal data breach, we will notify the relevant supervisory authority within 72 hours of becoming aware of the breach, where feasible, unless the breach is unlikely to result in a risk to the rights and freedoms of natural persons.
When the personal data breach is likely to result in a high risk to your rights and freedoms, we will communicate the breach to you without undue delay, providing information about the nature of the breach and the measures taken or proposed to address it.
If you are located in the EU/EEA, you have the right to lodge a complaint with a supervisory authority in your country of residence or place of work if you believe that we have violated your rights under GDPR. We would, however, appreciate the chance to deal with your concerns before you approach a supervisory authority, so please contact us first.
You can find contact details for your local supervisory authority through the European Data Protection Board website at https://edpb.europa.eu/about-edpb/board/members_en
To exercise your GDPR rights or for any questions regarding our GDPR compliance, please contact us:
Email: privacy@LuminousDriftReels.com
Phone: +64 9-123-4567
We will respond to your request within one month of receipt. If your request is complex or we receive multiple requests, this period may be extended by two further months, and we will inform you of any such extension.