Privacy Policy

Last updated 19 March 2026

  1. Openness and Transparency
    1. This Privacy Policy explains how Tribees Albums Operations (ABN 61 673 554 320) together with our related bodies corporate (“we”, “us”, “our” or “Tribees”) collects, stores, handles, and uses your Personal Information, whether provided to us directly by you, or via our websites, apps, social media pages or associated web pages or through the products, features, tools and other services we make available through or in connection with those sites (together, our “Services”), or via any other means.
    2. This Privacy Policy has been developed in accordance with the privacy laws applicable to our business, including the Privacy Act 1988 (Cth) (“Act”), General Data Protection Regulation (“EU GDPR”), the UK General Data Protection Regulation (“UK GDPR”) and the California Consumer Privacy Act (“CCPA”) (collectively, “Data Protection Laws”).
    3. The term “Personal Information” in this policy refers to information or data protected by applicable Data Protection Laws.
    4. All other capitalised terms used in this Privacy Policy have the meaning given to them in the Website TCs and other applicable agreements, unless otherwise specified or the context otherwise requires.
    5. By providing Personal Information to us, or by using our Services, you confirm that you have read and understood this policy, including how and why we use your information. If you don’t want us to collect or process your Personal Information in the ways described in this policy, you shouldn’t use our Services.
  2. Your Consent
    1. By your use of the Services, or otherwise by providing your Personal Information to us in any other circumstance, you consent to the collection, storage, use and disclosure of your Personal Information in accordance with this Privacy Policy and as otherwise permitted under applicable Data Protection Laws.
    2. In addition to the provisions of this Privacy Policy, there may also be specific and additional privacy and consent provisions that apply when we collect Personal Information. For example, we may publish or provide a specific privacy collection statement. In the event of any inconsistency between the provisions of this Privacy Policy and those other specific and additional provisions, the specific and additional provisions will prevail.
  3. Information We Collect and Receive
    1. We obtain the categories of Personal Information listed below from the following sources:
      1. Directly from you: for example, from forms you complete during registration;
      2. Indirectly from you: for example, based on your activity and interaction with our Services, or from the device or browser you use to access the Services;
      3. From third parties: for example, from other users of our Services, or from our vendors and suppliers that help provide Services who you may interact with; and
      4. From third party advertising and marketing partners.

Often, you choose what information to provide, but sometimes we require certain information to provide you the Services. Tribees uses the Personal Information it receives and collects in accordance with the purposes described in this Privacy Policy. Where we collect Personal Information indirectly, we will ensure that we act in accordance with relevant Data Protection Laws.

  1. While providing our Services, the types of Personal Information we may collect, and the way we may collect it, is set out in the following non-exhaustive list:
    1. Content you upload. When you use the Services, you may upload photographs and other content. That content may contain Personal Information, including images of individuals. You should ensure you have the appropriate rights or consents before uploading content that includes Personal Information relating to others;
    2. Identifying information. For certain Services, we may collect identity and contact details, such as names, dates of birth, addresses, email addresses, telephone numbers and other identifying and contact information. This may include account profile data if a Service requires you to set up an account;
    3. Marketing and analytics information: We receive information from our advertising and marketing partners. This information can include attribution information via cookies and UTM tags in URLs, responses to marketing emails and advertisements, responses to offers, and audience information from partners who you have given consent to share that information with us;
    4. Device and usage information: We collect information about your use of the Services for advertising, for analytics, to serve content, and to protect the Services. This can include your IP address, browser information (including referrers), device information (such as iOS, Android AAID, and, when enabled by you, location information provided by your device);
    5. Location information: We may collect approximate location information based on your IP address for security and localisation purposes. With your consent, we may also determine your precise location using information from your device, such as GPS data or information about wireless networks or cell towers near your mobile device. We use and store location information to provide and improve the Services, including for internal analytics, localisation, and regional compliance. If you have consented to share precise location data but wish to stop, you may revoke that consent through your device or Service settings. We will only share your location information with third parties where necessary to provide the Services;
    6. Analytics software information: We use data analytics software to ensure the Services functionality and to improve the Services. This software records information such as how often you use the Services, what happens within the Services, aggregated usage, performance data, app errors and debugging information, and where the Services were downloaded from. We do not link the information we store within the analytics software to any personally identifiable information that you submit within the mobile application. For more information, see our Cookies Policy below.

We do not collect sensitive personal information such as health information, social security numbers, racial or ethnic data, or biometric information. If we do, we will obtain your express consent at the time of collection.

  1. Our Use of Cookies and Similar Technologies
    1. We may use cookies, web beacons, pixels, log files and other technologies to collect Personal Information. This may include:
      1. an IP address to monitor traffic and volume on the Services;
      2. a session ID to track usage statistics on the Services; or
      3. information regarding your personal or professional interests, demographics, participation habits, experiences with our projects and interactive features.
    2. We may use this information to measure the effectiveness of content and how visitors use the Services.
    3. Cookies may also be used by us to collect the following information:
      1. your computer or device’s operating system;
      2. your computer or device’s browser type and capabilities;
      3. your computer or device’s Internet Protocol (IP) address and geolocation;
      4. web pages visited, including how you were referred to each web page; and
      5. web page usage statistics, including the time spent on each web page.
    4. In addition, third parties may place and read cookies on your browser, or use web beacons or similar technologies to collect information.
    5. If you choose to do so, you may configure your computer or device so that it disables “cookies” or does not accept them, however, this may impact the functionality of the Services. Some cookies are deleted when you close down your browser.
    6. Tribees automatically receives and records information from your computer system, browser or your device when you visit the Services, or use certain features of the Services, such as your IP address or unique device identifier, cookies, and data about which pages you visit and how you interact with those pages in order to allow us to operate and provide the Services. This information is stored in log files and is collected automatically. This information is used to prevent fraud and to keep the Services secure, to analyse and understand how the Services work for members and visitors, and to provide advertising, including across your devices, and a more personalised experience for members and visitors. We do not attempt to identify individuals using this information, and only use it for statistical analysis, system administration, and similar related purposes. This information is for example potentially available to Brand Partners who use Tribees Marketplace and its associated applications and services.
  2. Using and Disclosing Information
    1. We will generally use or disclose your Personal Information only for the primary purpose for which it was collected; or for a related secondary purpose where you would reasonably expect us to use or disclose the Personal Information for that secondary purpose. We may otherwise use and disclose your Personal Information if you have given us consent for the use or disclosure or it is required or authorised by law.
    2. The Personal Information you provide to us, or collected about you, is collected for the purpose of enabling us to provide and enhance our Services and to provide access to and enhance usage of the Services. In addition to any purpose notified to you at the time of collection, we may use your Personal Information:
      1. to provide, improve, test, and monitor the effectiveness of Services and diagnose or fix technology problems or for safety or security purposes;
      2. to monitor metrics such as total number of visitors, traffic, and demographic patterns;
      3. to gain user insights and analysis to improve the Services, including developing and testing new products and features;
      4. to provide rewards and support the goods and services promoted by Tribees;
      5. to provide personalised content and information to you and others, which could include online ads or other forms of marketing;
      6. to administer and manage use of our Services, including account management, password resetting, responding to questions and to monitor usage and conduct on the Services;
      7. to send communications to you about our Services or keep you informed of our products and services that might be relevant to you;
      8. to automatically update the Services on your devices;
      9. for any other purpose to which you have consented; and
      10. for any use which is required or authorised by law.
    3. We may also share your Personal Information with the following categories of third parties:
      1. Web hosting, optimisation and management companies: Who assist us with the hosting, operation, optimisation and maintenance of our Services;
      2. Storage: Third party storage providers that store our data on secure servers;
      3. Service providers: Who assist us with our Services, including user insight analytics providers and customer relationship management providers;
      4. Professional advisors and regulatory bodies: To comply with our legal obligations and enforce legal rights; and
      5. Business transactions: We may disclose your Personal Information to third parties in connection with, or in anticipation of, a business transaction such as a merger, acquisition, sale of assets, capital raise, restructure, or change of control. Where practicable, we will take reasonable steps to ensure that any recipient is bound by confidentiality obligations in respect of your Personal Information. If a transaction is completed, your Personal Information may be transferred to the acquiring entity as part of that transaction. We will notify you of any such change in accordance with applicable Data Protection Laws
  3. Security of Personal Information
    1. We will take reasonable steps to protect your Personal Information from misuse, interference and loss, and from unauthorised access, modification or disclosure.
    2. We use commercially reasonable safeguards to help keep the information collected through the Service secure and take reasonable steps (such as requesting a unique password) to verify your identity before granting you access to your account. If you reasonably believe that there has been unauthorised use or disclosure of your Personal Information, please contact us using the method set out below.
    3. You are responsible for maintaining the secrecy of your unique password and account information and for controlling access to emails between you and Tribees, at all times. We are not responsible for the functionality, privacy, or security measures of any other organisation.
    4. If the purposes for which we have collected the information involve providing Personal Information about you to any third party, we will take appropriate and reasonable steps to ensure any Personal Information is protected.
    5. Our Services may contain links to third party websites and services. This policy does not apply to the practices of third parties (such as other members who sell using the Services, certain third-party providers on whom we rely on to provide certain services, or API users) that Tribees does not own or control or individuals that Tribees does not employ or manage, except as otherwise provided for in the Website TCs or as required by law. If you provide your information to such third parties in connection with your use of the Services, different practices may apply to the use or disclosure of the information that you provide to them. We encourage you to read any privacy policies and ask questions of third parties before you disclose your Personal Information to them. For the purposes of EU and UK Data Protection Laws, these sellers, third party providers, and API users are independent controllers of data, which means that they are responsible for providing and complying with their own policies relating to any Personal Information they obtain in connection with the Services.
  4. Direct Marketing
    1. We may use your Personal Information to send you information about our Services, including new developments, products, services and special offers. Any such direct marketing will comply with applicable laws, including spam laws and Data Protection Laws.
    2. At any time, you may opt out of receiving direct marketing communications from us. Unless you opt out, your consent to receive direct marketing communications from us and to the handling of your Personal Information as detailed above will continue. To opt out email us at support@tribees.com or, where we have sent you electronic marketing materials, by using the unsubscribe link within the communication.
  5. Transfer of Personal Information
    1. Personal Information we collect will be transferred to our service providers, and stored on servers, located in Australia, the United States, or other countries in accordance with applicable Data Protection Laws to the extent necessary for the processing purposes set out in this Privacy Policy.
  6. Access and Correction to Your Personal Information
    1. Under Data Protection Laws, you have certain rights to access the Personal Information we collect and hold about you.
    2. Under certain Data Protection Laws, you may request:
      1. to opt out of the sale or sharing of your Personal Information or that we restrict or suspend our processing of it;
      2. access to your Personal Information;
      3. correction of your Personal Information (e.g. if you believe that it is not accurate, complete or up to date); and/or
      4. the deletion of your Personal Information.
    3. You can make these requests by contacting us at support@tribees.com. We will respond to your request and attempt to provide you with a response within a reasonable timeframe, including any timeframe stipulated under applicable Data Protection Laws.
    4. While you will not face discrimination for exercising any of your rights, honouring certain requests may limit or prevent your access to some or all our Services, and that there may be circumstances under which we are still entitled to process your Personal Information notwithstanding your request. Where that is the case, we will explain our reasoning to you and ensure that any continued processing is carried out in accordance with applicable Data Protection Laws.
    5. If we no longer need your Personal Information for the purposes for which it was collected, unless we are required under law or a court or tribunal order to retain it, we will take reasonable steps to de-identify or destroy your Personal Information securely, subject to our requirements to retain data to comply with our legal obligations and financial and audit obligations.
  7. Complaints
    1. To make a complaint about a suspected breach of any applicable Data Protection Laws, which includes how we handle your Personal Information, you may contact us at support@tribees.com. We will endeavour to respond to your complaint within a reasonable time after it is received.
    2. If you are not satisfied by our response:
      1. if you are in Australia: you may contact the Australian Privacy Commissioner at its website www.oaic.gov.au or by telephone on 1300 363 992; or
      2. if you are in the UK, you have the right to make a complaint at any time to the Information Commissioner’s Office (ICO), the UK regulator for data protection issues (www.ico.org.uk); or
      3. if you are in the EU, you have the right to lodge a complaint with your supervisory authority, whose contact details can be found here; or
      4. if you are in California, you can contact the California Privacy Protection Agency, whose details can be found here.

For all other jurisdictions, you may contact the relevant regulatory authority in your jurisdiction.

  1. Changes to This Policy
    1. We may make changes to this Privacy Policy from time to time. We encourage you to review this Privacy Policy periodically. The date listed at the beginning of this Policy indicates when it was last updated.
    2. We will notify you of changes to this Privacy Policy only where we are required to do so by applicable Data Protection Laws, or where the change is material in that it affects your rights or the way in which we handle your Personal Information. Any such notification may be provided through our Services, via email, or through other appropriate communication channels.
    3. Your continued use of our Services following any changes to this Privacy Policy constitutes your acceptance of those changes.
  2. How to Contact Us
    1. If you have any questions about this Privacy Policy or want to exercise your rights set out in this Privacy Policy, please contact us at support@tribees.com.

Specific information for residents of the European Union and the UK

This section of the policy applies to Tribees users that are located in the European Economic Area (EEA), Switzerland or United Kingdom (UK). Tribees processes your personal data in accordance with European laws and regulations, such as the General Data Protection Regulation (GDPR) and UK General Data Protection Regulation (UK GDPR).

  1. Controller’s Details
    1. For the purposes of the GDPR and UK GDPR, Tribees Albums Operations is the controller of your personal data. Tribees Albums Operations’ registered address is at Level 1, 56 Clarence Street, Sydney, NSW, 2000 and we can be contacted using the details provided below.
  2. Legal Bases for Processing
    1. If you are located in the EEA, Switzerland or UK, we need a lawful basis to collect, use and disclose your personal data as a controller. Our lawful basis will depend on the information concerned and the context in which it is processed.
  3. Collection and Use
    1. Generally, Tribees will collect and use your information and personal data as follows:
      1. Contractual necessity: Where processing is necessary to provide the Services to you. For example, to maintain functionality of the Services and resolve technical issues you may experience;
      2. Legitimate interests: Where processing is necessary for our legitimate interests, provided those interests are not overridden by your rights and interests. This includes providing, improving and developing our Services through research and development, data analytics, data labelling, machine learning and predictive analytics relating to usage data, ensuring the security and integrity of our Services, and sending you relevant marketing communications where you have not opted out. We do not rely on this lawful basis where our legitimate interests are overridden by your rights and interests;
      3. Consent: Where you have given us your consent to using your information in a certain way – for example, for the purposes set out in this Privacy Policy; and/or
      4. Legal obligations: Where it is necessary for compliance with our legal obligations – for example, to disclose your information in response to law enforcement requests and to retain your information for our record keeping purposes.
    2. Where we rely on your consent as the legal basis for processing, you can withdraw that consent at any time. Depending on the situation you can either withdraw your consent using the functionality of our Services or by contacting support@tribees.com.
    3. Where we use your information for our legitimate interest, you have the right to object to that use by contacting support@tribees.com. We will assess your objection in accordance with clause 9 of this Privacy Policy. Please note that in some cases, honouring your objection may limit or prevent your access to certain of our Services.
    4. Tribees Albums Operations is an entity incorporated in Australia. By using our Services you understand and agree that we will receive and process your personal data in Australia. We may also transfer your personal data to other countries where our affiliates and service providers are located. Please note that some of these countries may have data protection laws that are different from your country (and, in some cases, may not be as protective). For Tribees users in the EEA, Switzerland or UK, where we transfer your information to a third-party service provider that is not located in Europe, and is not in a country that benefits from an adequacy decision by the European Commission, UK or Swiss authorities, we will require those third party providers to enter into an agreement that provides appropriate safeguards for your information, including by using the EU Model Clauses and the UK International Data Transfer Addendum.