Last Updated: May 22, 2026
mighty-mist is committed to compliance with the General Data Protection Regulation (GDPR) and respects the data protection rights of individuals in the European Economic Area (EEA), United Kingdom, and Switzerland. This page outlines how we comply with GDPR requirements when processing personal data.
We process personal data only when we have a lawful basis to do so. Our legal bases include:
As a data subject, you have the following rights:
You have the right to request access to the personal data we hold about you. We will provide you with a copy of your data free of charge, along with information about how we process it.
You have the right to request correction of inaccurate or incomplete personal data we hold about you.
Also known as the "right to be forgotten," you can request deletion of your personal data under certain circumstances, such as when the data is no longer necessary for the purposes for which it was collected.
You have the right to request that we restrict processing of your personal data in certain situations, such as when you contest the accuracy of the data or object to processing.
You have the right to receive your personal data in a structured, commonly used, and machine-readable format and to transmit that data to another controller.
You have the right to object to processing of your personal data based on legitimate interests or for direct marketing purposes.
Where processing is based on your consent, you have the right to withdraw that consent at any time. Withdrawal does not affect the lawfulness of processing before consent was withdrawn.
You have the right to lodge a complaint with your local data protection authority if you believe your rights under GDPR have been violated.
To exercise any of your GDPR rights, please contact our Data Protection Officer:
Email: [email protected]
Address: Level 12, 348 Edward Street, Brisbane QLD 4000, Australia
We will respond to your request within one month, though we may extend this period by two additional months in certain circumstances. We will inform you of any such extension.
We implement appropriate technical and organizational measures to ensure a level of security appropriate to the risk, including:
When we transfer personal data outside the EEA, we ensure appropriate safeguards are in place, such as:
We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, comply with legal obligations, resolve disputes, and enforce our agreements. Specific retention periods depend on the nature of the data and the purpose of processing.
We do not engage in automated decision-making or profiling that produces legal effects or similarly significantly affects individuals without human intervention.
In the event of a personal data breach that is likely to result in a high risk to your rights and freedoms, we will notify you without undue delay and within 72 hours of becoming aware of the breach, as required by GDPR.
If you have questions about our data protection practices or wish to exercise your GDPR rights, you can contact our Data Protection Officer:
Data Protection Officer
mighty-mist
Level 12, 348 Edward Street
Brisbane QLD 4000, Australia
Email: [email protected]
We may update this GDPR compliance page from time to time to reflect changes in our practices or legal requirements. We encourage you to review this page periodically. The "Last Updated" date at the top indicates when the most recent changes were made.