Last updated: May 22, 2026
Although subtle-brick is based in Australia, we are committed to respecting the data protection rights of all individuals, including those in the European Union. This statement outlines how we comply with the General Data Protection Regulation (GDPR) when processing personal data of EU residents.
We process personal data only when we have a lawful basis to do so under GDPR Article 6:
If you are an EU resident, you have the following rights regarding your personal data:
You have the right to request copies of your personal data. We may charge a small fee for this service in certain circumstances.
You have the right to request that we correct any information you believe is inaccurate or complete information you believe is incomplete.
You have the right to request that we erase your personal data, under certain conditions.
You have the right to request that we restrict the processing of your personal data, under certain conditions.
You have the right to object to our processing of your personal data, under certain conditions.
You have the right to request that we transfer the data we have collected to another organization, or directly to you, under certain conditions.
To exercise any of these rights, please contact us at:
Email: [email protected]
Subject line: GDPR Data Request
We will respond to your request within one month. In complex cases, we may extend this period by two additional months, and we will inform you if this is necessary.
For GDPR-related inquiries, you may contact our designated data protection contact:
Email: [email protected]
Reference: Data Protection Inquiry
We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, including:
Your personal data may be transferred to and processed in Australia. While Australia is not covered by an EU adequacy decision, we ensure appropriate safeguards are in place to protect your data in accordance with GDPR requirements.
We implement appropriate technical and organizational measures to ensure a level of security appropriate to the risk, including:
In the event of a data breach that is likely to result in a risk to your rights and freedoms, we will notify you and the relevant supervisory authority within 72 hours of becoming aware of the breach, as required by GDPR Article 33.
We do not use automated decision-making or profiling that produces legal effects or similarly significantly affects you.
We do not knowingly collect or process personal data from children under 16 without parental consent. If we become aware that we have collected such data, we will take steps to delete it promptly.
If you are an EU resident and believe we have not handled your personal data in accordance with GDPR, you have the right to lodge a complaint with your local supervisory authority.
You can find your data protection authority contact details at: https://edpb.europa.eu/about-edpb/board/members_en
We may update this GDPR compliance statement from time to time. Any changes will be posted on this page with an updated revision date.
For any questions about this GDPR compliance statement or our data protection practices, please contact:
subtle-brick
47 Rainforest Drive
Byron Bay, NSW 2481
Australia
Email: [email protected]