Last Updated: May 13, 2026
Scarlet Bark is committed to complying with the General Data Protection Regulation (GDPR), which governs how we process personal data of individuals in the European Economic Area (EEA), United Kingdom, and Switzerland.
This statement outlines how we fulfill our obligations under GDPR and respect your data protection rights.
We process your personal data based on the following legal grounds:
Processing necessary to fulfill booking agreements and provide walking experiences you've requested. This includes processing booking details, payment information, and service delivery communications.
Processing necessary for our legitimate business interests, such as:
Processing required to comply with legal obligations, including tax laws, financial regulations, and safety requirements.
Processing based on your explicit consent, such as receiving marketing communications or non-essential cookies. You may withdraw consent at any time.
Under GDPR, you have the following rights regarding your personal data:
You have the right to request copies of your personal data. We will provide this information within one month of your request.
You have the right to request correction of inaccurate or incomplete personal data we hold about you.
You have the right to request deletion of your personal data when:
Note: We may be unable to delete data if retention is required by law or for establishing legal claims.
You have the right to request limitation on how we process your data in certain circumstances, such as when you contest data accuracy or object to processing.
You have the right to receive your personal data in a structured, commonly used, machine-readable format and to transmit it to another controller.
You have the right to object to processing of your personal data based on legitimate interests or for direct marketing purposes. We will cease processing unless we demonstrate compelling legitimate grounds.
Where processing is based on consent, you have the right to withdraw that consent at any time. Withdrawal does not affect the lawfulness of processing conducted before withdrawal.
We do not engage in automated decision-making or profiling that produces legal effects or similarly significant effects on individuals.
To exercise any of your GDPR rights, contact us at:
Email: [email protected]
Subject line: "GDPR Request"
Please include:
We will respond to requests within one month. In complex cases, we may extend this by two additional months with explanation.
For data protection inquiries, contact our Data Protection Officer:
Email: [email protected]
Subject line: "Data Protection Officer"
We implement appropriate technical and organizational measures to ensure data security, including:
In the event of a personal data breach that poses a risk to your rights and freedoms, we will:
We primarily process data within Australia. When data is transferred outside the EEA, we ensure appropriate safeguards are in place, such as:
We retain personal data only as long as necessary:
We work with trusted third-party processors who assist with specific services. All processors:
If you believe we have not handled your personal data in accordance with GDPR, you have the right to lodge a complaint with a supervisory authority.
For EEA residents, contact your local data protection authority. For UK residents, contact the Information Commissioner's Office (ICO).
We encourage you to contact us first so we can address your concerns directly.
We may update this GDPR compliance statement to reflect changes in our practices or legal requirements. Significant changes will be communicated through our website and, where appropriate, by email.
For any questions about our GDPR compliance or data protection practices:
Email: [email protected]
Address: 127 Wattle Grove Lane, Fitzroy, Victoria 3065, Australia