Privacy PolicySecurity

Privacy Policy

Last updated 8 April 2026

Coverage

This page explains how Tilt Legal handles personal information collected through its website and general business contacts.

Personal information processed through the Mobius platform on behalf of clients is governed by the applicable client agreement — not this policy. Where any other client agreement, platform term, or project-specific arrangement sets out a more specific position, that arrangement will apply.

Information we collect

Information you provide

This may include your name, work email, organisation, role, enquiry details, and any information you choose to include when you contact us, request a resource, or work with us.

Technical and usage information

We may collect device, browser, network, and usage information needed to operate the site, secure our systems, and improve the experience over time. This includes the use of session recording tools that capture how visitors interact with our pages, such as clicks, scrolls, and mouse movements.

How we use information

We use personal information collected through this website and our business contacts for the following purposes, on the legal bases noted:

  • To respond to enquiries and manage ongoing communication — based on our legitimate interest in operating our business, or where necessary to take steps at your request.
  • To provide, operate, and improve our services and website — based on our legitimate interest in maintaining and improving our offerings.
  • To maintain security, investigate misuse, and protect our systems — based on our legitimate interest in keeping our systems and users safe.
  • To meet legal, regulatory, and contractual obligations — based on legal obligation.
  • To send occasional updates about Tilt Legal, where you have opted in — based on consent, which you can withdraw at any time.

Tools and working practices

In the course of our work, we may use artificial intelligence tools to assist with research, drafting, analysis, and other tasks. Information you provide to us — including through enquiries, correspondence, and meetings — may be processed using these tools.

We may also record meetings for internal reference, follow-up, or quality purposes, including by taking notes using AI note-taking or transcription tools.

We take reasonable steps to ensure that any tools we use handle information appropriately and in line with our obligations. Where specific arrangements apply to client work, those are set out in the relevant client agreement.

Sharing and service providers

We may share information with service providers and infrastructure partners where that is reasonably necessary to run the website, deliver services, or support client work.

We do not sell personal information. Where information is handled on behalf of a client, we do so within the scope of that engagement and the controls that apply to it.

Cookies and tracking

Our website uses PostHog to understand how visitors use the site, including through session recordings that capture page interactions. These recordings help us identify usability issues and improve the experience.

Session recordings may capture clicks, scrolls, mouse movements, and page content visible during your visit. They do not intentionally capture passwords or payment details. You can control cookie preferences through your browser settings, though disabling cookies may affect some site functionality.

International transfers

Some of the service providers we use to operate this website and manage communications are based outside Australia, including in the United States and the United Kingdom. Where personal information is transferred internationally, we take reasonable steps to ensure it is protected, including through contractual commitments with those providers.

Retention and security

We keep information for as long as it is reasonably needed for the purpose for which it was collected, and longer where law, regulation, or contract requires it.

Retention periods vary depending on the service, the client context, and the sensitivity of the material. We apply administrative, technical, and operational safeguards appropriate to the systems involved.

If we become aware of a data breach that is likely to result in serious harm, we will notify affected individuals and the relevant authorities in accordance with applicable law.

Access and questions

You may have rights in relation to the personal information we hold about you, including rights of access and correction, depending on where you are located and the laws that apply.

To raise a privacy question or make a request, contact us at info@tilt.legal or through our Contact Us page. We will respond within a reasonable timeframe and in accordance with applicable law.

If you are not satisfied with our response, you may have the right to lodge a complaint with a relevant supervisory authority, such as the Office of the Australian Information Commissioner (OAIC).

Changes to this policy

We may update this policy from time to time. Material changes will be noted on this page, and the "Last Updated" date will be revised accordingly.