GDPR Compliance

Last updated: May 22, 2026

General Data Protection Regulation

Diligent Tilt is committed to ensuring that our data processing activities comply with the General Data Protection Regulation (GDPR), even though we primarily operate in Australia. This page outlines our commitment to data protection and your rights under GDPR.

Legal Basis for Processing

We process personal data on the following legal bases:

• Consent: You have given clear consent for us to process your personal data for specific purposes
• Contract: Processing is necessary for a contract we have with you
• Legal obligation: Processing is necessary for us to comply with the law
• Legitimate interests: Processing is necessary for our legitimate interests or the legitimate interests of a third party

Your Rights Under GDPR

Under the GDPR, you have the following rights:

• Right to access: You can request copies of your personal data
• Right to rectification: You can request correction of inaccurate or incomplete data
• Right to erasure: You can request deletion of your personal data
• Right to restrict processing: You can request that we restrict processing of your personal data
• Right to object: You can object to our processing of your personal data
• Right to data portability: You can request transfer of your data to another organization
• Rights related to automated decision making: You have rights regarding automated decision making and profiling

Data Protection Officer

For questions regarding data protection or to exercise your GDPR rights, please contact us at:

Email: [email protected]

Data Retention

We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, including legal, accounting, or reporting requirements.

International Data Transfers

When we transfer personal data outside of the European Economic Area, we ensure appropriate safeguards are in place to protect your information in accordance with GDPR requirements.

Data Breach Notification

In the event of a data breach that poses a risk to your rights and freedoms, we will notify the relevant supervisory authority within 72 hours and inform affected individuals without undue delay.

Supervisory Authority

You have the right to lodge a complaint with a supervisory authority if you believe our processing of your personal data violates GDPR.

Updates to This Policy

We may update this GDPR compliance statement from time to time. Changes will be posted on this page with an updated revision date.