GDPR Compliance

Last Updated: June 4, 2026

While olive-thicket is based in Australia, we recognize the importance of data protection rights for all individuals, including those protected under the European Union's General Data Protection Regulation (GDPR). This page outlines how we respect and uphold these rights.

Legal Basis for Processing

We process personal data based on the following legal grounds:

• Consent: When you provide explicit consent for us to process your personal data for specific purposes
• Contract Performance: When processing is necessary to fulfill our service obligations to you
• Legitimate Interest: When we have a legitimate business interest that does not override your fundamental rights
• Legal Obligation: When we are required to process data to comply with legal requirements

Your Data Protection Rights

Under GDPR principles, you have the following rights regarding your personal data:

Right to Access

You have the right to request copies of your personal data. We may charge a reasonable fee for this service if your request is clearly unfounded or excessive.

Right to Rectification

You have the right to request that we correct any information you believe is inaccurate or complete information you believe is incomplete.

Right to Erasure

You have the right to request that we erase your personal data under certain conditions, such as when the data is no longer necessary for the purposes it was collected.

Right to Restrict Processing

You have the right to request that we restrict the processing of your personal data under certain conditions.

Right to Object to Processing

You have the right to object to our processing of your personal data under certain conditions, particularly for direct marketing purposes.

Right to Data Portability

You have the right to request that we transfer the data we have collected to another organization, or directly to you, under certain conditions.

Right to Withdraw Consent

Where we rely on your consent to process your personal data, you have the right to withdraw that consent at any time.

Data Processing Activities

Categories of Personal Data

We process the following categories of personal data:

• Identity data (name, contact details)
• Contact data (email address, postal address)
• Service data (service requests, preferences)
• Technical data (IP address, browser information)
• Communication data (correspondence history)

Recipients of Personal Data

We may share your personal data with:

• Service providers who assist with website hosting and maintenance
• Professional advisers where necessary
• Regulatory authorities when required by law

International Data Transfers

Your personal data is primarily stored and processed in Australia. If we transfer data outside of the European Economic Area, we ensure appropriate safeguards are in place to protect your information in accordance with GDPR requirements.

Data Retention

We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, including:

• Service delivery and customer relationship management
• Legal and regulatory compliance obligations
• Resolution of disputes and enforcement of agreements

When personal data is no longer required, we securely delete or anonymize it.

Automated Decision-Making

We do not use automated decision-making or profiling in ways that produce legal effects or similarly significant effects on individuals.

Data Security

We implement appropriate technical and organizational measures to ensure a level of security appropriate to the risk, including:

• Encryption of data in transit and at rest
• Regular security assessments
• Access controls and authentication procedures
• Staff training on data protection

Data Breach Notification

In the event of a data breach that is likely to result in a risk to your rights and freedoms, we will notify you and relevant supervisory authorities within 72 hours of becoming aware of the breach, where required by law.

Exercising Your Rights

To exercise any of your data protection rights, please contact us at:

Email: [email protected]
Address: 127 Botanical Gardens Drive, Melbourne VIC 3004, Australia

We will respond to your request within one month. In complex cases, we may extend this period by a further two months, and we will inform you of any such extension.

Complaints

If you believe we have not handled your personal data in accordance with GDPR principles, you have the right to lodge a complaint with your local data protection authority.

Contact Information

For any questions about our GDPR compliance or data protection practices, please contact us at [email protected].