Privacy Policy

1. Who We Are

FronTier Racking designs and supplies infrastructure systems for high-performance cultivation facilities. We operate across multiple jurisdictions and comply with applicable data protection laws, including:

• EU General Data Protection Regulation (GDPR – Regulation (EU) 2016/679)

• UK General Data Protection Regulation (UK GDPR)

• Swiss Federal Act on Data Protection (FADP)

• California Consumer Privacy Act (CCPA)

• Australian Privacy Act 1988 (Cth)

We act as a data controller when determining the purposes and means of processing your personal data.

2. What Information We Collect

We may collect and process the following personal information when you visit our website or contact us:

• Name

• Company name

• Email address

• Phone number (if provided)

• Location and project details

• Message content

• Technical information such as IP address, browser type, and site usage data (if cookies or analytics are used)

We only collect the data necessary to respond to your enquiry or provide relevant services.

3. How We Use Your Data

We use your personal data to:

• Respond to contact form enquiries

• Assess and advise on project or service needs

• Maintain internal communication records

• Comply with legal obligations

• Improve user experience and website security

We do not use your data for unsolicited marketing unless you provide explicit consent.

4. Legal Bases for Processing

We process your personal data based on one or more of the following legal grounds, depending on your location:

• Consent: When you voluntarily submit data via our website form

• Legitimate Interest: To respond to professional enquiries and operate our business effectively

• Contractual Necessity: To take steps at your request before entering into a contract

• Legal Obligation: To meet regulatory or statutory requirements

For UK and EU residents, this complies with GDPR and UK GDPR. For Swiss users, processing follows the FADP, and for California residents, CCPA-consistent rights are respected. Australian users are protected under the Australian Privacy Principles (APPs).

5. International Data Transfers

We may store or process your data in countries outside your own jurisdiction. When transferring personal data internationally, we ensure that adequate safeguards are in place:

• EU/UK: Standard Contractual Clauses (SCCs) or adequacy decisions

• Switzerland: Equivalent protective measures under FADP

• United States: Only with vendors who comply with GDPR-aligned frameworks (e.g. DPF or SCCs)

• Other regions: As permitted under relevant national laws

6. Data Retention

We retain your data only as long as necessary for the purposes set out in this policy or to comply with applicable laws. If you request deletion of your data, we will honour that request unless legally obligated to retain it.

7. Data Security

We implement appropriate technical and organisational measures to secure your personal data against unauthorised access, disclosure, alteration, or destruction. These include encrypted storage, controlled system access, and secure form handling.

8. Your Rights

Depending on your location, you may have the following rights:

For EU/UK/Swiss residents:

• Access your personal data

• Correct inaccuracies

• Request deletion (“right to be forgotten”)

• Restrict or object to processing

• Withdraw consent at any time

• Request data portability

• Lodge a complaint with a supervisory authority

For California residents (CCPA):

• Know what personal data is collected

• Request access to or deletion of your data

• Opt out of the sale or sharing of personal data (not applicable as we do not sell data)

• Exercise non-discrimination for using privacy rights

For Australian residents:

• Access and correct your data

• Complain about a breach of the APPs

To exercise any rights, contact us using the details below.

9. Cookies & Tracking Technologies

We use minimal cookies essential to the function of this site. If we implement third-party analytics or tracking in future, users will be given clear notice and the ability to opt in or out in compliance with GDPR, ePrivacy, and other applicable regulations.

10. Contact Information

If you have questions, wish to exercise your rights under data protection law, or would like to raise a privacy-related concern, please use our secure online form:

Submit a Data Request: Data Protection Request Form

This form is the official and only point of contact for privacy and data protection matters. It ensures secure communication and helps us process your request promptly and in accordance with applicable laws.

We aim to acknowledge all requests within the statutory timeframe (typically within 30 calendar days) and may request additional information to verify your identity where necessary.

11. Updates to This Policy

We reserve the right to update this Privacy Policy from time to time. Any changes will be posted on this page with an updated “Effective Date“. We encourage you to review it periodically.