Privacy Policy

We're committed to protecting and respecting your privacy and personal data, in line with the General Data Protection Regulation (Regulation (EU) 2016/679) (“GDPR”).

This Policy explains when and why we collect personal information about people who visit our website. It also explains how we use the data, our lawful basis for processing the data, the conditions under which we may disclose it to others and how we keep it secure.

We may change this Policy from time to time, so please check this page occasionally to ensure that you're happy with any changes. By using our website, you agree to be bound by this Policy. This Policy was last updated on 2 April 2026.

Any questions regarding this Policy and our privacy practices should be sent by email to our Data Protection Officer at dpo@triplep.net or by writing to Triple P Europe at Koninginneweg 97, 1211 AP Hilversum, the Netherlands.

Who are we?

We are Triple P Europe BV, the EU based implementing body behind the Triple P – Positive Parenting Program® (“Triple P”). Triple P is regarded as one of the world's most effective parenting programs, thanks to decades of rigorous and ongoing scientific research. We are part of the Triple P Group, which comprises the Australian company Triple P International Pty Ltd and its related bodies corporate. You can write to us at Koninginneweg 97, 1211 AP Hilversum, the Netherlands.

Data controller and dpo

The Data Controller is Triple P International Pty Ltd (for the Triple P Group of companies), with headquarters at 11 Market Street North, Indooroopilly, Brisbane, Queensland 4068 AUSTRALIA ("Controller"). The Data Protection Officer ("DPO") can be contacted at: dpo@triplep.net

HOW DO WE COLLECT INFORMATION FROM YOU?

We obtain information about you when you use our website. Examples include when you browse the site, contact us through the site, register for a parenting class or sign-up to our newsletters.

THE DATA WE PROCESS

We process the following personal data which you provide when you interact with our website(s) and use the related services and functions. This data might include your:

  • Name
  • Address,
  • Composition of your family,
  • E-mail address,
  • IP address, and/or
  • Courses or classes of your interest.

Some data collected via the website is mandatory, for us to provide the associated service e.g. to process queries submitted via the website. Mandatory data is marked with an asterisk (*). Without that data or we cannot proceed. Our lawful basis in processing your personal data is our own legitimate interest in providing the features on our website and in responding to queries sent to us, pursuant to Articles 6 and 9 of the GDPR.

We may process the data in electronic or hard copy form. We will always implement appropriate security measures to safeguard your information.

CREDIT/DEBIT CARD USE

If you purchase a product from us, your credit card information is not held by us. Your personal data is instead collected by third party payment processors, PayPal or Mollie (for customers in the Netherlands), who specialise in the secure collection and processing of credit/debit card information. Where payment is made via these service providers, they are the Data Controller with respect to the personal data collected and processes, to facilitate payment. Information about their privacy and security practices is available on their websites.

HOW IS YOUR INFORMATION USED?

We may use your personal data to:

  • process orders you make
  • facilitate bookings you make for parenting classes etc.
  • seek your views or comments on the services we provide
  • notify you of changes to our services
  • respond to your queries
  • send you electronic direct marketing communications (when you have subscribed to receive these messages). These may include information about campaigns, appeals and/or promotions of our associated companies, goods and services.

HOW LONG IS YOUR INFORMATION KEPT?

We will hold your personal information on our systems for as long as is necessary for the relevant processing activity. We are also legally required to hold some types of information to fulfil our statutory obligations (for example the collection of payments and distribution of access codes).

WHO HAS ACCESS TO THE DATA

We will always treat your information with respect. All Triple P Group personnel have undertaken training on the EU’s data protection requirements, which we recognise as the international gold standard. Further, Triple P Group personnel are subject to confidentiality obligations and are only authorised to process personal data if it is necessary for the performance of their role. Your personal data may be processed by the following categories of personnel at Triple P International Pty Ltd: technical, IT, administrative and marketing personnel as well as other individuals who need to process the data to perform their job duties.

Your personal data may be shared outside of the Triple P Group in limited circumstances, The lawful basis for our disclosing your personal data would be your consent, compliance with a legal obligation or our legitimate business interests. Further, de-identified data may be shared for a variety of purposes, but by its nature it will not be personal data.

The University of Queensland – The Creators of Triple P

Some personal data relating to users of our websites, may be shared with The University of Queensland’s Parenting and Family Support Centre (“UQ”), who are the creators of Triple P.

Service Providers

We will not provide your personal data to service providers, where we have concerns about their data protection practices. Any Service Provider will be subject to confidentiality obligations and will only be authorised to process your personal data on our behalf and in accordance with our instructions. We may disclose your personal information to service providers where it is necessary:

  • To provide our services to you. For example, our in-house IT personnel may require the services of IT professionals and consultants, website designers and/or developers to maintaining and/or improve our websites and our online programs. We have a legitimate business interest to use IT industry experts as needed to improve and deliver our services to you.
  • For the collection and/or storage of the data.
  • For the use of third-party service providers working on our behalf. We have a legitimate interest in using third party service providers for the delivery and improvement of our websites and its features. Examples include:
    • The Netherlands based third party that manages our websites (Bureau Blanco).
    • Payment service providers (PayPal, Molley)
    • Communication service providers (Alchemer, MailChimp)
    • Website recording service providers (Hotjar)
    • Analytics and advertising service providers (Google Suite).

Legally Required Disclosures

We may disclose any of your personal data to a third party, including legal professionals (solicitors, barristers), when it is necessary to enforce our legal rights or if we are legally compelled to do so by a court or governmental entity.

INFORMATION TRANSFERRED VIA THE INTERNET

Not all websites and webpages are secure. When you are on a secure webpage, a lock icon will appear in the address bar of most web browsers such as Google Chrome. We cannot guarantee the security of information sent to us online, especially via unsecured webpages or other online media (e.g. social media platforms). As a result, while we strive to protect your personal information, we cannot guarantee the security of any information you transmit to us, and you do so at your own risk. Once we receive your information, we make our best effort to ensure its security on our systems. Where we have given (or where you have chosen) a password which enables you to access certain parts of our websites, you are responsible for keeping this password confidential. We ask you not to share your password with anyone.

TRANSFERRING YOUR INFORMATION OUTSIDE OF EUROPE

The Triple P Group is an international corporate group. To operate as a global business, we need to transfer data around the world. The personal data collected from you when you access and/or interact with our websites, may be transferred to countries outside the European Union ("EU"), including to the USA and Australia. By using our websites, you agree to the use of your personal data as outlined in this Privacy Policy, including the international transfer/storage/processing of your personal data to/in countries outside the EU, including where those countries do not have comparable data protection laws and do not provide comparable levels of protection to the rights of data subjects, as the GDPR provides. Whilst we rely on your consent as the lawful basis for the international transfer of your personal data, we also note that, for example, Amazon and Microsoft, the third-party service providers used for the storage of the website data, have appropriate safeguards in place in line with the EU’s data protection laws. Both have included Standard Contractual Clauses into their standard terms, to which TPI has agreed.

PROFILING

We may analyse your personal information to create a profile of your interests and preferences so that we can contact you with information relevant to you. We may make use of additional information about you when it is available from external sources to help us do this effectively. We may also use your personal information to detect and reduce fraud and credit risk.

16 OR UNDER

We do not intend to collect personal information of minors via our website. We are concerned to protect the privacy of children aged 16 or under. If you are aged 16 or under‚ please get your parent/guardian's permission before accessing our websites and/or otherwise providing us with personal information. We encourage parents to be involved with the online behaviour of their child(ren) and prevent the unsolicited collection of personal information without parental consent. In the case where you believe that personal information of your child has been collected without parental consent, please contact us at dpo@triplep.net.

YOUR RIGHTS

Individuals in the EU have the right to access/obtain a copy of the personal data we hold about them. You may request access to/a copy of your personal data, along with information about how and on what basis that data is processed, by contacting us using any means, including by contacting our Data Protection Officer at dpo@triplep.net. Alternatively, you can use the following Subject Access Request form, to make your request online. Individuals in the EU also have the following rights with respect of their personal data:

  • The right to rectify inaccurate personal data (including to have incomplete personal data completed).
  • The right to erase their personal data (in limited circumstances, such as where it is no longer necessary in relation to the purposes for which it was collected or processed).
  • The right to restrict processing of their personal data under certain circumstances
  • The right to port your data in machine-readable format to a third party (or to you) under certain circumstances.
  • The right to to withdraw your consent to our processing of their personal data (where that processing is based on your consent).
  • The right to object to the processing of their personal data under certain circumstances
  • The right to lodge a complaint with their local data protection supervisory authority.

To enforce any of these rights, please contact our Data Protection Officer at dpo@triplep.net. Please note that we may request proof of identity, and we reserve the right to charge a fee where permitted by law, especially if your request is manifestly unfounded or excessive. We will endeavor to respond to your request within all applicable timeframes. If you contact us regarding data for which we are a data processor, we will attempt to refer your request to the entity that is the controller for your personal data.

WEBSITE RECORDING

Our web site may also use the Hotjar web site recording service. Hotjar is a product that has been developed by Hotjar Ltd. Hotjar may record mouse clicks, mouse movements, page scrolling and any text keyed into website forms. The information collected does not include any details or sensitive personal data submitted by data subjects. Data collected by Hotjar is for Triple P International Pty Ltd or our sub-contractors use only. The information collected is used to improve our website usability and is stored and used for aggregated and statistical reporting.

GOOGLE ANALYTICS

The Triple P Group has a Data Processing Agreement with Google. Any Data that is collected and stored in Google Analytics is anonymised and encrypted before it's transmitted to Google's servers. The Data Sharing Settings have been disabled. Analytics-cookies are not used in combination with other Google Services, unless your personal consent has been given prior to this connection is made.

Cookies

Change your consent