GDPR Compliance

Last updated: May 11, 2026

Our Commitment to GDPR

While pale-joist is based in Australia, we respect the privacy rights of all individuals, including those in the European Union. This page outlines how we comply with the General Data Protection Regulation (GDPR) principles.

Legal Basis for Processing

We process personal data only when we have a legal basis to do so:

• Consent: You have given clear consent for us to process your personal data for a specific purpose
• Contract: Processing is necessary for a contract we have with you
• Legal obligation: Processing is necessary for us to comply with the law
• Legitimate interests: Processing is necessary for our legitimate interests or the legitimate interests of a third party

Your GDPR Rights

If you are a resident of the European Union, you have the following rights:

• Right to access: You can request copies of your personal data
• Right to rectification: You can request correction of inaccurate or incomplete data
• Right to erasure: You can request deletion of your personal data
• Right to restrict processing: You can request that we limit how we use your data
• Right to data portability: You can request transfer of your data to another organization
• Right to object: You can object to our processing of your data
• Rights related to automated decision-making: You have protections against solely automated decision-making

Data Protection Officer

For GDPR-related inquiries, please contact our data protection contact:

Email: [email protected]
Subject line: GDPR Inquiry

Data Transfers

Your personal data may be transferred to and processed in Australia. We ensure appropriate safeguards are in place for any international data transfers in accordance with GDPR requirements.

Data Breach Notification

In the event of a data breach that poses a risk to your rights and freedoms, we will notify you and the relevant supervisory authority within 72 hours of becoming aware of the breach, as required by GDPR.

Cookies and Tracking

We use cookies only with your consent. You can withdraw consent at any time through our cookie banner or browser settings. See our Cookies Policy for details.

Third-Party Processors

We carefully select third-party processors and ensure they comply with GDPR standards through appropriate data processing agreements.

Exercising Your Rights

To exercise any of your GDPR rights, please contact us at [email protected] with "GDPR Request" in the subject line. We will respond to your request within one month.

Complaints

If you believe we have not handled your data in accordance with GDPR, you have the right to lodge a complaint with your local supervisory authority in the EU.