Australia Privacy Policy

Last Updated: 11.June.2026
Effective Date: 11.June.2026

This Privacy Policy (“Policy”) describes how Thrico by PulsePlay Digital Private Limited (“we”, “us”, or our”), collects, uses, discloses, stores and otherwise handles personal information relating to an identified or identifiable natural person within the Australia, as well as how we use cookies and similar technologies.  It applies to all users of the Thrico.

We are committed to handling your personal information in accordance with the Privacy Act, 1988 (“Privacy Act”) and the Australian Privacy Principles (“APPs”) contained in Schedule 1 of the Privacy Act, as well as any other applicable privacy or data protection legislation. 

WHO ARE WE, AND HOW TO CONTACT US

Thrico is a modern community management platform developed and operated by PulsePlay Digital Private Limited. Our platform enables organizations (referred to as “Community Owners”) to create white-labelled, branded social media universes for their members, fans, customers, alumni and partners. 

PulsePlay Digital is the entity that determines the purpose and means of processing personal information collected through the Thrico platform and is therefore responsible for compliance with applicable privacy laws. 

1. SCOPE OF THIS POLICY

This Policy applies to:

(a) Individuals who visit thrico.com or any Thrico-powered community website or mobile app (“End Users or Members”)

(b) Individuals who register for early access, signup for a Thrico subscription, or otherwise engage with our marketing communications (“Prospects”).

(c) Employees, authorized users, and administrators of organizations that purchase or use Thrico as a Community Owner. (“Community Owner Representatives”)

(d) Job applicants and other individuals whose personal information we handle in the course of our business operations.

It does not apply to the practices of third-party websites, products, or services linked from the Platform, which are governed by their own privacy policies.

Where a Community Owner deploys Thrico for their own community, that Community Owner may also independently process personal information about their members. In such cases the Community Owner acts as a separate data controller and is responsible for its own privacy obligations. Thrico’s role in processing data on behalf of a Community Owner is governed by the relevant data processing or service agreement.

2. PERSONAL INFROMATION WE COLLECT

We collect personal information that is reasonably necessary for us to provide Services and carry on our business function. The categories below describe the types of personal information we may collect.

(a) Information you provide directly

(i) Account and profile information: Name, username, email address, phone number, profile photo, bio, job title, organization, location, and any other information you add to your profile.
(ii) Authentication information: passwords (stored in hashed form), multi-factor authentication credentials. 
(iii) Community content: posts, comments, messages, photos, videos, documents, poll responses, survey answers, discussion forum contributions, and other user generated content you publish or share on the platform. 
(iv) Connection and network information: people you follow, connect with, or interact with.
(v) Event information: event registrations, RSVPs, attendance records, and feedback.ys.
(vi) Communications: emails, support tickets, live chat transcripts, and other correspondence with us.
(vii) Survey and feedback data: responses to questionnaires, satisfaction surveys, and product research. 
(viii) Identity verification documents: where required by law or for certain restricted features.
(ix) Subscription and account management details: plan, type, invoices, renewal dates. 

(b) Information we collect automaticallyected Information

When you use the Services, we and our services providers may automatically collect: 

(i) Device and technical information: IP address, device type, operating system, browser type and version, device identifiers, screen resolution.
(ii) Usage and log data: pages visited, features used, clicks, scrolls, search queries, time and duration of visits, referring URLs, error logs.
(iii) Location information: approximate geographic location inferred from your IP address; precise location only if you enable location enable location-based features and grant permission.
(iv) Cookies and similar technologies: session cookies, persistent cookies, local storage, pixel tags, web beacons. Refer Section 8 for details. 
(v) Gamification and engagement metrics: points earned, badges awarded, leaderboard rankings, challenge participation. 
(vi) Communication metadata: timestamps, read receipts, and delivery status of in-platform messages (not message content unless reported for moderation).

(c) Information from third parties

(i) Social sign-on providers: if you register or log in using a third-party identity provider (e.g., Google) we receive basic profile information such as name and email address. 
(ii) Community Owners: when community owner invites you to their platform, they may supply your name and email address to us for the purpose of sending you an invitation. 
(iii) Payment processors: transaction confirmation and fraud risk signals. 
(iv) Referral programs: information about you shared by existing members who refer you via the invite and refer module. 

(d) Sensitive informationy Available Data

We do not intentionally collect sensitive information (as defined in the Privacy Act, including health information, racial or ethnic origin, political opinions, religious beliefs, sexual orientation, criminal record, or biometric data) unless you voluntarily disclose it in content you post on the platform or its strictly necessary and we have your consent. We ask that you do not post sensitive information about other individuals without their knowledge and consent.

3. HOW WE COLLECT PERSONAL INFORMATION 

(a) We collect personal information:

(i) Directly from you when you register, complete a profile, post content, communicate with us, or use our features.
(ii) Automatically through your use of the Services via cookies, log files, and similar technologies.
(iii) From Community Owners who provide members data to configure their branded platform. 
(iv) From third-party identity or payment providers you choose to integrate.
(v) From publicly available sources, where lawful and relevant to our business purposes.

Where it is reasonable and practicable, we will only collect personal information directly from the individual concerned. If we collect personal information directly from the individual concerned. If we collect personal information about an individual from a third party, we will take reasonable steps to notify the individual of the collection.

4. WHY WE COLLECT AND USE PERSONAL INFORMATION

We collect, hold, use and disclose personal information for the following primary purpose and related secondary purposes that would reasonably be expected by you:

(a) Providing and Operating the Services

(i) Creating, maintaining, and administering your account, including enabling access to the Thrico platform and related services. As Thrico operates on a Software-as-a-Service (SaaS) subscription model, we process and use user data for purposes such as account registration, subscription management, billing, renewals, service administration, and providing continued access to the platform for Entities, Brands, and Community Owners subscribed on a monthly or yearly basis.
(ii) Enabling community features, Feed, Connections, Communities, events, discussion forums, chat, jobs, Marketplace, Gamification, stories, Memories, Nearby, and all other modules.
(iii) Processing payments and managing subscriptions (Applicable solely for “Community Owners”)
(iv) Providing customer support and responding to inquiries
(v) Delivering push notifications, in-app messages, and emails related to your account and community activity.

(b) Personalization and Member Experience

(i) Customizing content, recommendations, and connection suggestions based on your profile and activity.
(ii) Powering the Gamification system (points, badges, leaderboards, achievements).
(iii) Enabling nearby and new to city location-based features if you opt in.
(iv) Remembering your preferences and settings.

(c) Safety, Security and Moderation

(i) Verifying your identity and preventing fraudulent or unauthorized access.
(ii) Moderating content to enforce our community standards and Terms of Use. 
(iii) Detecting, investigating, and preventing abuse, spam, harassment, and other policy violations. 
(iv) Maintaining the security and integrity of the platform and its infrastructure.

(d) Analytics and Platform Improvement

(i) Analyzing usage patterns to understand how members interact with the platform.
(ii) Conducting research and development to improve existing features and create new ones.
(iii) Measuring the effectiveness of gamification and engagement campaigns. 
(iv) Generating anonymized or aggregated reports for Community Owners on their community’s growth and engagement.

(e) Legal and Compliance Obligations

(i) Complying with applicable laws, regulations, court orders, and lawful requests from government authorities.
(ii) Enforcing our Terms of Use and other agreements. 
(iii) Establishing, exercising or defending legal claims.
(iv) Meeting our record-keeping obligations.

(f) Business Operations

(i) Managing relationships with Community Owners, vendors and business partners.
(ii) Conducting due diligence in connection with business transaction such as Merger or Acquisitions.

5. DISCLOSURE OF PERSONAL INFORMATION

We may disclose personal information to the following categories of recipients:

(a) Community Owners: If you join a community on the Thrico platform that is operated by a Community Owner, that Community Owners administrators can access member profiles, activity data, and content within their community. The Community Owner’s own privacy policy governs how they further handle that information. We encourage you to review the privacy policy of any community you join.

(b) Other Platform Members: Depending on your privacy settings, your profile information and content may be visible to other members of the Platform or of a specific community you belong to. You can adjust your visibility settings in your account preferences.

(c) Service Providers (Prcessors): We engage trusted third-party service providers who process personal information on our behalf under contractual data processing terms. These include:

(i) Cloud hosting and infrastructure providers
(ii) Payment processors 
(iii) Email and notification delivery providers
(iv) Analytics and performance monitoring tools
(v) Customer support and help-desk platforms
(vi) Security and fraud-detection services
(vii) Search and content delivery networks.

(d) Business Partners and Integrations: If you choose to connect a third-party integration from within the platform, we may share necessary information to enable that integration. The third party’s own privacy policy will apply to information it receives.

(e) Legal Requirements: We may disclose personal information if required to do by law or in the good-faith belief that such action is necessary to:

(i) comply with legal obligation or lawful request
(ii) protect and defend our rights or property
(iii) prevent or investigate possible wrongdoing in connection with the services
(iv) protect the personal safety of users or the public
(v) protect against legal liability.

(f) Business Transfers: In the event of a Merger, Acquisition, reorganization, sale of assets, or insolvency, personal information may be transferred to the acquiring entity. We will notify affected users and ensure the successor entity is bound by substantially similar privacy obligations.

(g) With your Consent: We may share your personal information with other parties where you have given us your express consent to do so. We do not sell, rent or trade personal information to third parties for their own marketing purposes. 

6. OVERSEAS DISCLOSURE OF PERSONAL INFORMATION 

As Thrico by PulsePlay digital operates globally, personal information may be stored, processed accessed by recipients located outside Australia, including in India and by cloud infrastructure providers operating in various countries. 

Before disclosing personal information to an overseas recipient, we take reasonable steps to ensure that the recipient is subject to privacy obligations that are at least substantially similar to the APPs, or we otherwise take contractual or other lawful measures to protect the information. 

By using the services, you acknowledge and consent to your personal information being transferred to and stored in countries outside Australia. If you do not consent to such transfer, please do not use the services or contract us to discuss alternatives. 

Where required by APP 8, we will take such steps as are reasonable in the circumstances before disclosing personal information to an overseas recipient. You may request further information about the countries to which we may transfer your personal information by contracting our privacy officer on thrico.dpo@pulseplaydigital.com 

7. DATA STORAGE AND SECURITY

(a) We take reasonable steps to protect personal information we hold from misuse, interference, loss and unauthorized access, modification or disclosure. Our security measures include, but are not limited to:

(i) Encryption of data in transit using HTTPS/TLS and encryption of data at rest, and;
(ii) Role-based access controls ensuring that only authorized personnel can access personal information, and;
(iii) Multi-factor authentication for administrative access, and;
(iv) Regular security assessments, vulnerability scanning and penetration testing, and;
(v) Incident response procedures to identify, contain and remediate data security events, and;
(vi) Employee training on data protection and information security, and;
(vii) Secure Software Development Lifecycle (SDLC) practices.

No method of electronic transmission or storage is completely secure. While we strive to use commercially acceptable means to protect your personal information, we cannot guarantee absolute security. If you believe your account has been compromised, please contact us immediately at thrico.dpo@pulseplaydigital.com.

(b) Data Breach Response: If we become aware of a data breach that is likely to result in serious harm to any affected individuals, we will notify the Office of the Australian Information Commissioner (OAIC) and affected individuals in accordance with the Notifiable Data Breaches (NDB) scheme under IIIC of the Privacy Act.ed permissions, and strict identity verification procedures.

8. COOKIES AND TRACKING TECHNOLOGIES

We use cookies and similar tracking technologies to operate the Platform, remember your preferences, analyze usage, and support our security and fraud prevention measures. 

(a) Types of Cookies we use

(i) Essential/Strictly Necessary Cookies: Required for the Platform to function. Without these cookies, you may not be able to log in or use core features of the Platform. These cookies do not require consent.
(ii) Functional Cookies: Used to remember your preferences and settings (such as language preferences and notification settings) in order to provide a more personalized experience.
(iii) Analytics and Performance Cookies: Collect information about how users interact with the Platform, including pages visited, features used, and errors encountered, to help improve the performance and functionality of our services. The data collected is generally aggregated or pseudonymized.
(iv) Marketing and Targeting Cookies: Used, where you have provided consent, to deliver relevant promotional content, personalize advertisements, and measure the effectiveness of marketing campaigns.

(b) Managing Cookies: You can control cookies through your browser settings. Most browsers allow you to refuse new cookies, delete existing cookies, or receive a warning before a cookie is stored. Disabling cookies may limit the functionality of the platform. Where legally required, we obtain your consent before placing non-essential cookies.

We do no currently respond to “Do not Track” browser signals, but we review this position regularly. 

9. RETENTION OF PERSONAL INFORMATION

We retain personal information for as long as necessary to fulfil the purposes for which it is collected, including to provide the services, comply with legal obligations, resolve disputes, and enforce our agreements. The specific retention period depends on the nature of the information and the purpose for which it is held. 

In general:

(a) Account information: retained for the duration of your account and for a reasonable period afterwards (typically 12 Months) to allow account reinstatement or to resolve disputes.

(b) Community content: retained while your account is active. Content you delete is typically removed from public view promptly; residual copies in backup systems are deleted within 3 years.

(c) Transaction and billing records: retained for at least 7 years as required by the Australian taxation and financial record-keeping laws. 

(d) Marketing opt-out records: retained indefinitely to honour your preference.

When personal information is no longer required, we will take reasonable steps to destroy or re-identify it securely. We do not keep personal information longer than necessary. 

10. YOUR RIGHTS AND CHOICES

Under the Privacy Act, and the APPs, you have the following rights regarding your information. We will respond to requests within 30 days, or notify you if additional time is needed.r technologies to:

(a) Access: You have the right to request access to the personal information we hold about you. We will provide access in the format you request unless it is not reasonable or practicable to do so. We may charge a reasonable fee to cover the cost of locating and providing the information.

(b) Correction: If you believe personal information we hold about you is inaccurate, out-of-date, incomplete, irrelevant, or misleading, you may request that we correct it. We will take reasonable steps to correct the information or, where we disagree, note your request alongside the record.

(c) Deletion (Erasure): You may request deletion of your account and personal information. Upon receiving a verified request, we will delete or de-identify your information within a reasonable period, subject to retention obligations described in Section 10. Note that content you have shared in a community may remain visible to that community’s members unless separately deleted.

(d) Opt-Out of Marketing: You may opt out of receiving marketing communications from us at any time by:

(i) Clicking the Unsubscribe link in any marketing email we send.
(ii) Adjusting notification preferences in your account settings.
(iii) Contacting us at thrico.dpo@pulseplaydigital.com.

Opting out of marketing does not affect transactional or service-related communications.

(e) Data Portability: Where technically feasible, you may request an export of your personal information in a structured, commonly used format. Please contact our Privacy Officer to make this request.

(f) Withdrawal of Consent: Where processing is based on your consent (e.g., optional analytics cookies, location-based features), you may withdraw consent at any time. Withdrawal does not affect the lawfulness of processing carried out before withdrawal.

(g) Restrictions of Use: You may request that we restrict processing of your personal information in certain circumstances.

(h) Lodging a Complaint: If you believe we have interfered with your privacy, you may lodge a complaint with us in the first instance. We will investigate and respond within 90 days. If you are not satisfied with our response, you may escalate your complaint to the Office of the Australian Information Commissioner (OAIC).

11. CHILDRENS PRIVACY

(a) Thrico by PulsePlay Digital Private Limited is not directed at children under 13 years of age (“Children”). We do not knowingly collect personal information from children. A person below the age of 13 years is requested not to register or provide any personal information through the Platform.

(b) If a parent or guardian believes their child has provided us with personal information without consent, please contact us immediately at thrico.dpo@pulseplaydigital.com and we will take prompt steps to delete such information.

(c) For Community Owners, to operate communities that may be accessed by individuals between the ages of 13 and 18, we recommend implementing appropriate consent and parental notification processes in their own community policies. 

12. COMMUNITY OWNER RESPONSIBILITIES

When a Community Owner uses Thrico to build and manage a branded community, they control the data that their members generate within their platform. In such cases: 

(a) The Community Owner is responsible for having a lawful basis collecting and processing their member’s personal information.

(b) The Community Owner must maintain their own privacy policy and ensure their members are informed about how their information is handled. 

(c) The Community Owner must obtain all required consents before uploading or sharing member data with Thrico.heir own community policies. 

(d) The Community Owner’s use of data obtained through their Thrico-powered platform must comply with applicable law and Thrico by PulsePlay Digital Terms of Use. 

13. THIRD PARTY LINKS AND INTEGRATIONS

The Platform may contain links to third-party websites, services, integrations, including payment processors (Razorpay, Stripe or PayPal). This Policy does not apply to those third parties. We encourage you to read the privacy policies of every third-party service you access through the Platform. 

We are not responsible for the privacy practices, security, or content of third-party websites or services.  

14. ANONYMIZED AND AGGREGATED DATA

We may create anonymized or aggregated data derived from personal information, that does not identify any individual. We may use and disclose such data or any lawful purpose, including to provide analytics reports to Community Owners and to publish industry insights. Once information is genuinely anonymized or aggregated, it is no longer personal information for the purposes of this Policy. 

15. DIRECT MARKETING

(a) We may use your personal information to send you marketing communication about Thrico’s products, features, events, and promotions, subject to applicable law. We comply with the requirements of the Spam Act 2003 (Cth) when sending commercial electronic messages, including:messages, including:

(i) Only sending messages to individuals who have provided express or inferred consent. 
(ii) Clearly identifying ourselves as the sender.
(iii) Including a functional unsubscribe mechanism in every commercial electronic message.

(b) Where we use personal information for direct marketing, we will ensure that it was collected for a primary purpose that included direct marketing, or that we have your consent. You can opt out at any time as described in Section 10 (D).

16. GOVERNEMNT IDENTIFIERS 

We do not collect, use, or disclose Australian Government related identifiers (such as Tax File Numbers, Medicare Numbers, or Driver’s license Numbers) unless expressly required by law or authorized by the Privacy Act. If any identity verification is required for specific features, we will handle such identifiers in accordance with APP 9.

17. CHANGES TO THIS PRIVACY POLICY

We may update this Policy from time to time to reflect changes in our practices, technology legal requirements or business operations. When we make material changes we will 

(i) Post the updated Policy on our Website with a revised ‘Effective Date’
(ii) Notify registered users via Email or in-platform notification at least 14 days before the changes take effect (except where immediate changes are required by Law).

18. GOVERNING LAW AND JURISDICTION

This Policy is governed by the Laws of Australia, including the Privacy Act, 1988 (Cth) and the Australian Privacy Principles. Any disputed arising in connection with this Policy are subject to the Jurisdiction of the Courts of Australia. 

Where users access the Platform from other jurisdiction, additional local privacy laws may also apply. We aim to comply with applicable privacy obligations in all jurisdictions in which we operate. 

HOW TO CONTACT US

If you have any questions about this Policy, wish to exercise any of your rights, or wish to make a privacy complaint, please contact our Privacy Officer:

Email: thrico.dpo@pulseplaydigital.com
Website: https://thrico.com
Office Address: We are headquartered at Sushma Cottage, Ram Nagar, Dharamshala 176215- Himachal Pradesh, India.

We will acknowledge receipt of your request within 14 business days and aim to respond fully within 90 days. If additional time is needed, we will notify you and provide and estimated response date.

If you are not satisfied with our response, you may escalate your complaint to the Office of the Australian Information Commissioner (OAIC) at www.oaic.gov.au.