Privacy Policy

1. Overview

This Privacy Policy outlines how Blaze Fitness collects, handles, stores and discloses personal information in alignment with the Privacy Act 1988 (Cth) and Australian Privacy Principles (APPs). By visiting our studios, website or Blaze HQ app experiences, you acknowledge this statement.

2. Kinds of information we collect

• Identity particulars: legal name, date of birth, emergency contact.
• Contact particulars: postal address, email, Australian mobile telephone as supplied through membership forms or digital checkout previews.
• Financial references when you onboard payment plans (merchant processing occurs through PCI-compliant partners — we do not store full card PAN or CVV on static marketing pages).
• Health & safety declarations required for strenuous activity waivers.
• Technical data: browser type, coarse geolocation inferred from IP, device identifiers tied to Blaze HQ bookings.
• Operational imagery: Blaze operates CCTV covering entries, walkways and selective training zones pursuant to conspicuous signage consistent with Workplace Surveillance provisions for NSW premises.

3. Purpose of collection

Blaze uses personal information to administer memberships, personal training blocks, merchandise, security monitoring, statutory record-keeping, marketing where consent exists, aggregated analytics regarding facility utilisation, and troubleshooting digital services. If we rely on legitimate interest narratives for optional communications, we will provide unsubscribe controls.

4. Cookies & local storage

Our marketing previews may utilise browser local storage to retain shopping-cart selections purely on your device. Optional analytics/marketing switches presented in cookie dialogue are wired for eventual activation but do not load third-party ad pixels in this staging build. You control toggles stored under our blaze_cookie_* keys.

5. Overseas disclosure

Certain cloud workloads (booking sync, transactional email relays) may process data hosted in OECD jurisdictions with contractual clauses mirroring APP 8 cross-border safeguards. We do not sell personal information to brokers.

6. Quality, storage & security

Blaze endeavours to maintain accurate records via member self-service updates. Data is housed on hardened infrastructure with MFA-restricted staff access and periodic penetration testing facilitated by contracted specialists. CCTV footage retains on rolling encrypted storage — retention intervals posted in-club noticeboards.

7. Access, correction & complaints

You may request correction or deletion of personal information constrained by Blaze's lawful obligations via [email protected]. If dissatisfied with our outcome, escalate to the Office of the Australian Information Commissioner (oaic.gov.au). No fee applies for lodging a complaint unless complex retrieval costs emerge (reasonable cost recovery communicated first).

8. Updates

Blaze may revise this Privacy Policy periodically. Latest revision date appears at introduction. Meaningful alterations will attract email or conspicuous in-app disclosures for active members.