Privacy Policy Statement

At Haven Bathhouse Pty Ltd, we are committed to protecting your privacy and the confidentiality of your personal information. This Privacy Policy outlines how we collect, use, disclose, store, and safeguard your personal information when you visit our premises, book a service, purchase a membership or bundle pack, or interact with us online or in person.

We manage your personal information in accordance with the Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs).

1. Collection of Personal Information

We collect personal information that is reasonably necessary for the operation of our business and the provision of wellness and bathhouse services. This may include:

  • Contact Information: Full name, email address, phone number, and residential address.

  • Account Information: Username, login credentials, and booking preferences.

  • Membership and Service Information: Date of birth, gender, emergency contact details, and health declarations where required for safe use of facilities.

  • Payment Details: Credit/debit card information, billing address, and payment history.

  • Usage Data: Interactions with our website or booking system, including IP address, browser type, and device identifiers.

  • Communications: Email correspondence, customer service inquiries, and client feedback.

  • Photography/Media (where applicable): If media or photography is conducted on premises, it will only include identifiable individuals with their prior consent.

We may collect this information directly from you or from third-party platforms that you authorise (e.g. when booking online or joining a waitlist).

2. Use of Personal Information

We use your personal information to:

  • Provide and manage wellness services, memberships, and client sessions.

  • Facilitate booking confirmations, cancellations, reminders, and payment processing.

  • Respond to enquiries, feedback, and customer support requests.

  • Assess health and safety considerations in line with our facility use requirements.

  • Manage internal operations, service optimisation, and experience improvements.

  • Send service announcements, updates, and, with your consent, marketing communications (e.g. promotions or new offerings).

  • Comply with legal and regulatory obligations.

You may opt out of marketing communications at any time by using the unsubscribe option in our emails or by contacting us directly.

3. Disclosure of Personal Information

We will only disclose your personal information where required to provide services or comply with legal obligations. Disclosure may occur in the following situations:

  • Third-Party Service Providers: Booking platforms, payment processors, IT providers, and customer communication tools that support our operations.

  • Legal Compliance: If required by law, subpoena, warrant, or legal process.

  • Business Operations: In the event of a corporate restructure, sale, or transfer, personal information may be disclosed to advisers or acquirers in accordance with confidentiality agreements.

  • With Your Consent: Any other disclosures will only occur with your express permission.

We take reasonable steps to ensure that third-party providers comply with applicable privacy standards.

4. Data Security

We implement appropriate administrative, technical, and physical safeguards to protect personal information from misuse, interference, loss, unauthorised access, modification, or disclosure. These measures include:

  • Encrypted transmission of sensitive data (e.g. payments)

  • Restricted access controls to personal information

  • Regular review of IT systems and data handling processes

Please note that no data transmission over the internet is completely secure, and while we strive to protect your information, we cannot guarantee absolute security.

5. Data Retention

We retain your personal information only for as long as is reasonably necessary to:

  • Provide ongoing services or support

  • Meet legal, regulatory, and accounting obligations

  • Resolve disputes or enforce our agreements

When personal information is no longer required, we securely delete, anonymise, or destroy it in accordance with our data retention policy.

6. Access and Correction

You have the right to:

  • Request access to personal information we hold about you

  • Request correction of any inaccurate, incomplete, or outdated information

  • To exercise these rights, please contact us using the details below. We may request verification of your identity before actioning your request.

7. Website and Cookies

When you visit our website, we may collect anonymous technical data (such as pages viewed, session duration, and referring sources) to monitor usage trends and improve site functionality. This may involve the use of cookies and analytics tools. You can manage cookie settings through your browser preferences.

8. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in legal obligations, technology, or business operations. The latest version will always be available on our website, and we encourage you to review it periodically.

For material changes, we will notify active members or customers via email or on-site notice.

9. Contact Us

If you have any questions, concerns, or complaints regarding this Privacy Policy or the handling of your personal information, please contact us.