At PowerPlay IE Pty Ltd (ABN 61 672 298 074) ("PowerPlay", "we", "us", or "our"), your privacy matters to us. Whether you're booking a race, visiting our venue, or interacting with us online, we're committed to protecting the personal information you share with us in accordance with the Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs). This Privacy Policy explains what information we collect, how we collect it, why we use it, who we share it with, and how we keep it safe.
1. Consent
By interacting with PowerPlay—whether by visiting our venue, booking online, signing up for communications, or using our services—you consent to the collection, use, and disclosure of your personal information as outlined in this Privacy Policy.
Where required by law (such as for direct marketing or sharing certain data), we will seek your express consent. You can withdraw your consent at any time by contacting us (see contact details below) or opting out of marketing communications.
2. What We Collect
We collect personal information that helps us deliver a great experience, including:
Essential Information:
• Name and contact details (email address, phone number)
• Date of birth
• Booking and purchase history
• Location data (which PowerPlay venue you visit)
• Postcode
Membership Information:
• For our membership program: first name, last name, birth date, location preference, email, and mobile number
Payment Information:
• Limited data, including the name on your card, card type, and last four digits of your payment method
• We do not collect or store full card details—payments are securely processed via Stripe
Media and Safety Information:
• Helmet camera footage (available for customer use)
• Photo or video footage (via venue security systems or promotional activities)
• Confirmation of meeting height and weight requirements
Technical Information:
• Device and technical information (e.g., IP address, device type, operating system, browser type)
• Information collected via cookies and third-party analytics tools
We may also collect personal information from third parties when you've given them permission to share it with us (e.g., booking through partner platforms or registering via social media).
3. How We Collect Your Data
We collect your personal information in several ways, including:
• When you make a booking or purchase online or in person
• When you create an account, join our membership program, or sign up for marketing communications
• When you enter competitions or promotions
• When you provide feedback, submit forms, or contact us directly
• When you visit our venue and appear in CCTV footage
• When you use our helmet cameras during your race experience
• When parents/guardians provide consent and information for minors
• Automatically, through cookies and tracking tools when you use our website or digital content
We may also use third-party tools (e.g., Google Analytics, Meta Pixel) to collect de-identified insights such as:
• Pages visited, time spent, referring website, and click behaviour
• Device identifiers or IP address
You can manage how cookies are used via your browser settings or opt out through providers' privacy tools.
4. Why We Collect It
We use your personal information to:
• Manage bookings and provide our services
• Administer our membership program
• Communicate with you about your experience, feedback, or enquiries
• Send service notifications about your bookings or purchases
• Personalize your experience and improve our services
• Send promotional or marketing communications via email and/or SMS (only with your express consent)
• Monitor safety and security at our venues
• Verify eligibility for our activities (age, height, weight requirements)
• Process payments securely • Understand customer trends and improve operations, events, and digital offerings
• Meet our legal and insurance obligations
You can opt out of marketing at any time via the unsubscribe link in emails, by replying "STOP" to SMS messages, or by contacting us directly.
5. How We Share It
We may share your information with:
Trusted third-party service providers including:
• Booking systems
• Payment processors
• Marketing and analytics platforms
• IT support services
• Cloud storage providers
• Legal authorities or regulators where required to comply with legal obligations, court orders, or to protect the safety of people and property
• Insurance providers where necessary for claims processing
• Related entities and corporate affiliates within our corporate group, but only for the purposes described in this Privacy Policy and in accordance with the Privacy Act
• In the event of a business sale, merger, reorganization, dissolution, or similar event, your personal information may be transferred as part of that transaction (subject to the same protections outlined in this policy)
All third-party providers and related parties must meet appropriate security and privacy standards, sign appropriate data processing agreements where required by law, and are not allowed to use your personal information for their own purposes.
We do not sell your personal information under any circumstances.
6. How We Store and Protect It
We store your data securely and implement reasonable safeguards to protect it from loss, misuse, unauthorized access, or disclosure.
These measures include:
• Encryption of sensitive data
• Secure authentication processes
• Regular security assessments
• Access controls and staff training
• Physical security measures at our venues
Data Retention Periods:
• Personal account information: For as long as your account remains active plus 4 years. We retain your personal information for up to four (4) years from your last interaction with PowerPlay (such as a booking, login, or email engagement). After that, we securely delete or de-identify your data unless legally required to keep it longer. You can request deletion at any time by contacting us.
• CCTV footage: For as long as necessary for security and insurance purposes (minimum of 17 days)
• Helmet camera footage: Retained for 30 days unless requested by customers
• Booking and transaction records: 7 years (as required by Australian tax laws)
• Marketing preferences: Until you withdraw consent or unsubscribe
Some of our service providers may operate outside Australia. Where this applies, we take reasonable steps to ensure that overseas recipients handle your data in accordance with Australian privacy standards (APP 8 – Cross-border disclosure). We may rely on contractual clauses, third-party certifications, or the recipient's binding privacy obligations.
7. Data Breach Response
In the unlikely event of a data breach that could result in serious harm to individuals whose personal information we hold, we will:
• Take immediate steps to contain the breach
• Assess the potential harm to affected individuals
• Notify affected individuals and the Office of the Australian Information Commissioner (OAIC) where required under the Notifiable Data Breaches scheme
• Take remedial action to prevent similar breaches in the future
8. Cookies and Website Use
Our website uses cookies and similar technologies to:
• Improve functionality and performance
• Tailor content, promotions, and user experience
• Remember your preferences
• Measure engagement and marketing effectiveness
We use third-party tools such as Google Analytics and Meta Pixel that may set their own cookies and collect information as governed by their own privacy policies. You may choose to manage or disable cookies in your browser settings, although this may affect site functionality.
9. Access, Correction and Your Rights
Under the Privacy Act, you have the right to:
• Access the personal information we hold about you
• Request corrections if your information is inaccurate, incomplete, or outdated
• Request deletion of your personal information (where legally permissible)
• Withdraw your consent to certain uses of your information
• Make a privacy complaint if you believe we've breached the APPs
• Ask us to explain our handling of your personal information
To exercise your rights or raise concerns, please contact us using the details below. We will respond within a reasonable timeframe, usually within 30 days.
If we decline a request for access or correction, we will provide written reasons for our decision and information about complaint mechanisms.
10. Future International Operations
While we currently operate only in Australia, we may expand to New Zealand and/or Asian markets in the future. If we do, we will update this Privacy Policy to address any additional privacy requirements of those jurisdictions.
11. Contact Us
If you have questions about this Privacy Policy or your personal information, contact:
PowerPlay IE Pty Ltd
2/670 Marshall Rd, Malaga WA 6090
Email: letsrace@powerplay.com.au
Phone: 08 6365 5771
If you're not satisfied with our response, you may contact the Office of the Australian Information Commissioner (OAIC): www.oaic.gov.au
12. Changes to This Policy
We may update this Privacy Policy from time to time to reflect operational or legal changes. When we do, we'll post the updated version on our website and update the effective date. For significant changes, we will provide notice via email or on our website. We recommend checking back periodically to stay informed.
13. Minors and Parental Consent
PowerPlay’s services are designed for individuals aged 10 years and older, who are also at least 140 cm in height and under 120 kg in weight.
When a booking is made for a minor, we collect limited personal information—such as the child’s first name, last name, and date of birth—from a parent or legal guardian, who provides this information on the minor’s behalf. By doing so, the adult confirms they have authority to act on behalf of the minor and consents to:
• The minor participating in PowerPlay activities
• The collection and use of the minor’s personal information as required for booking, safety, and insurance purposes
• Confirmation that the minor meets height and weight requirements
Our team may visually verify these requirements at the venue for safety reasons. We do not knowingly collect any additional information directly from children under the age of 15. Parents or guardians may request access to, correction of, or deletion of their child’s information at any time by contacting us (see Section 11).
