Our Commitment to Your Privacy

We are committed to handling your personal and health information in accordance with the requirements of the Commonwealth Privacy Act 1988.

This policy outlines:

• The types of information we collect and hold about you

• How and why we collect it

• How we use and share it

• Your rights to access and correct your information

• How to make a privacy complaint

• Whether your information is disclosed to overseas recipients

Personal Information We Collect

We collect and hold the following personal information:

• Name, address, date of birth, email, and contact details

• Information about your family or relatives

• Information about other health professionals involved in your care

• Government identifiers such as Medicare or DVA numbers (not used for identification purposes)

• Health information, including symptoms, medical history, diagnoses, treatments, specialist reports, test results, appointment and billing details, prescriptions, healthcare identifier, and health fund details

How We Collect and Hold Information

We collect personal information:

• Directly from you (e.g., online via Zoom, by phone, or via forms)

• From a responsible person acting on your behalf

• From third parties where permitted by law (e.g., other health professionals, insurers, the My Health Record system)

Why We Collect and Use Your Information

We collect and use your personal information to:

• Provide physiotherapy services

• Communicate with you and those involved in your care

• Manage our accounts, billing, and IT systems

• Conduct accreditation, quality assurance, and internal audits

When We Share Your Information

We may disclose your information:

• To comply with legal obligations (e.g., mandatory reporting, court orders)

• To consult with other health professionals involved in your care

• To obtain diagnostic and pathology test results

• To claim insurance or liaise with health funds and government bodies

• To manage administrative services (e.g., billing, debt recovery)

• To prevent or lessen serious threats to your health or safety, or to public safety

• To assist in locating a missing person

• To defend legal claims

• To fulfill notification requirements to liability insurers

Accessing and Correcting Your Information

You have the right to access and correct the personal information we hold about you. We will respond to your request within 30 days. Please contact the clinic directly.

If your personal information is inaccurate or outdated, notify us in writing. We may also ask you periodically to confirm the accuracy of your details. Please inform us of any changes to your contact information.

Information Security

We take reasonable steps to protect your information, including:

• Secure cloud-based storage

• Confidentiality agreements with staff

• Staff training in confidentiality and data security

• Access controls based on a need-to-know basis

• Strong password protection and two-factor authentication

Receiving Anonymous Treatment

Where lawful and practicable, you may receive treatment anonymously or under a pseudonym.

Disclosure to Overseas Recipients

We do not routinely disclose your personal information overseas. If necessary, we will seek your consent unless disclosure is required by law. Possible disclosures may include:

• Health professionals involved in your care while overseas

• Overseas-based cloud storage providers

Privacy Concerns and Complaints

If you have concerns about how we handle your personal information, please contact us in writing. We aim to respond within 30 days.

If you are not satisfied with our response, you may contact the Office of the Australian Information Commissioner:

• Phone: 1300 363 992

• Email: enquiries@oaic.gov.au

• Post: GPO Box 5218, Sydney NSW 2001

• Website: https://www.oaic.gov.au/privacy/privacy-complaints/

Policy Updates

We update this policy periodically to reflect changes in legislation or our practices. Updates will be posted on our website.

Contact Us