Plain status. This page is a request path, not a signed agreement. The Hoist Assets Terms and Privacy Policy apply unless HoistAI Pty Ltd and your organisation have both signed a separate DPA.
When to request a DPA
Request a DPA if your procurement, privacy, or vendor-risk process requires one before connecting production workflows. If a DPA is appropriate for your use case, we will send the current DPA request package and work through reasonable customer-specific requirements.
What the DPA covers
- HoistAI Pty Ltd as the Hoist Assets operator.
- Customer account data, search inputs, search outputs, certificates, and Due Diligence Records handled by Hoist Assets.
- Security measures, subprocessors, breach notification, assistance with data-subject requests, return or deletion, and governing law.
- PPSR searches are limited to organisations and serial-numbered property. Hoist Assets does not offer individual-grantor PPSR searches.
How to request it
Use /contact/ with your organisation name, the Hoist Assets plan or workflow you are assessing, and any procurement deadline. We will reply with next steps or the questions needed to prepare the document.
Before you email
The most useful supporting pages are /trust, /trust/residency, /trust/security, /trust/npii-boundary, and /trust/afsa-b2g. Hoist Assets provides source-backed evidence for due diligence workflows; it does not provide legal or financial advice.