1. Introduction
TPF Pty Ltd and TPF Sports Pty Ltd (collectively referred to as "TPF") are committed to protecting the privacy of individuals. This Privacy Policy outlines how we collect, use, store, and disclose personal information, in compliance with the Privacy Act 1988 (Cth), the Australian Privacy Principles (APPs), and international standards where applicable (including the GDPR for users in the UK and EU).
2. Scope
This policy applies to all personal information collected, held, used or disclosed by TPF in Australia and internationally through our platforms, including the Mber+ platform, ecommerce sites, and offline operations.
3. What Information We Collect
We may collect personal information including, but not limited to:
• Name, address, delivery address, phone number, email
• Member entitlements, purchase and order history
• Customer feedback, support communications
• System usage, IP addresses, browser/device metadata (for analytics and security)
4. How We Collect Information
Information is collected directly from you:
• When you place an order or register on our platform
• When you contact our support or customer service team
• Through cookies and tracking technologies when you use our digital platforms
5. Purpose of Collection
We collect personal data for:
• Processing product orders and fulfilment
• Providing customer support
• Managing membership entitlements as defined by your club
• Communicating updates, offers, or marketing (with opt-out ability)
• Detecting and preventing fraud
• Analytics and business insights
6. Data Storage & Security
All customer data is stored securely in Amazon Web Services (AWS) cloud infrastructure hosted in Sydney, Australia. Data is encrypted at rest and in transit using industry-standard encryption (AES-256 and TLS 1.2+).
Access controls, monitoring, and regular security assessments are enforced to prevent unauthorised access, misuse, or disclosure.
7. International Data Access & Transfers
Support and operations teams located in Vietnam and Australia may access data stored in AWS. All staff adhere to internal privacy and security policies in line with the Australian Privacy Principles. If personal data is accessed from overseas locations, it remains under the effective control of TPF.
8. Sharing of Information
We may share your personal data only when necessary, including with:
• Delivery and logistics partners
• Financial institutions for payment processing (e.g., Stripe)
• IT service providers, cloud providers (e.g., AWS)
• Regulatory bodies when required by law
• We ensure all third parties comply with strict data handling agreements.
9. Direct Marketing & Communication
You can opt out of marketing communications at any time by using the unsubscribe link in emails or contacting us at unsubscribe@tpf.com.au.
10. Your Rights
You have the right to:
• Request access to your personal information
• Request corrections to inaccurate or outdated data
• Make a complaint regarding a breach of the Privacy Act or APPs
• To exercise your rights, please contact privacy@tpf.com.au.
11. Linked Sites
TPF is not responsible for the privacy practices of external websites linked via our platforms. Please review the privacy policies of those third-party sites.
12. Data Retention
We retain personal data only as long as required for business, legal, and regulatory purposes. Customer records are retained for a minimum of 24 months, after which they are archived or securely deleted.
13. Changes to this Policy
This policy may be updated from time to time. The latest version will be published on our website. Users are encouraged to review it periodically.
14. Contact Us
Privacy Contact: privacy@tpf.com.au
Phone: +61 3 9520 1111
Legal Entity: TPF Pty Ltd
Address: Level 1, 33-41 Balmain Street, Cremorne, VIC 3121, Australia
This Privacy Policy was last updated in June 2025.