1. Our Commitment to Privacy
Elderhood Enabled (ABN: 97 186 925 106) is committed to protecting the privacy of your personal information, including sensitive health information. We adhere to the Australian Privacy Principles (APPs) contained in the Privacy Act 1988 (Cth).
This policy outlines how we manage your personal information.
2. Practice Contact Details
If you have any questions or concerns about this policy or the personal information we hold, please contact:
Contact Person
Steven Davis
Email
admin@elderhoodenabled.com.au
Phone
0423 702 808
Mail
Elderhood Enabled
Steven Davis
7 Eden Park Drive
Unit 5, Suite #1103
Macquarie Park
NSW, 2113
3. Collection of Personal Information
3.1 What We Collect
The type of personal information we collect includes, but is not limited to:
- Contact & Identification Details: Name, address, date of birth, phone numbers, and email address.
- Health Information (Sensitive Information): Medical history, diagnosis, symptoms, treatment plans, progress notes, specialist reports, test results, and any other information necessary to provide you with healthcare.
- Billing Information: Medicare, DVA, or private health insurance details.
3.2 How We Collect Information
We will collect personal information directly from you unless:
- It is not reasonable or practicable to do so (e.g., from a parent/guardian, or during an emergency).
- We receive it from third parties such as referring doctors, specialists, or other health professionals, with your consent.
3.3 Note Taking and Transcription
- Note taking via transcription is strictly by informed consent only.
- Personal information obtained via transcription is entered directly into the practice management software and handled with the same high level of security and confidentiality as all other clinical records.
- You have the right to decline or withdraw consent for transcription at any time.
4. Purpose of Collection, Use, and Disclosure
We collect, hold, use, and disclose your personal information for the primary purpose of:
- Providing high-quality physiotherapy and allied health services.
- Communicating with you regarding your care, appointments, and billing.
- Administrative and billing purposes (e.g., submitting claims to Medicare, DVA, or other funding bodies).
- Communicating with other members of your healthcare team (e.g., your GP or specialist), with your consent.
- Meeting our legal obligations (e.g., mandatory reporting).
We will not use or disclose your personal information for a secondary purpose unless a legal exception applies (e.g., with your consent, or where required or authorised by law).
5. Data Quality and Security (Storage)
We take reasonable steps to protect your personal information from misuse, interference, loss, unauthorised access, modification, or disclosure.
5.1 Electronic Records
- All personal information is entered and securely stored electronically in our practice management software. This software is protected by industry-standard security measures, including strong passwords and access controls.
5.2 Paper Records and Destruction
- If paper documents are received or generated during the course of business, they will be scanned and stored in the practice management software.
- Physical copies of these documents will then be shredded in a secure manner to ensure the permanent preservation of confidentiality.
5.3 Overseas Disclosure
- There is no overseas disclosure of your personal information. Your data is processed and stored within Australia.
5.4 Retention
- We are required by law to retain your medical records for a minimum period (e.g., 7 years from the date of last entry for adults, and until a child turns 25). Once the legal retention period has expired and the information is no longer needed, we will take reasonable steps to destroy or permanently de-identify the information.
6. Access and Correction
You have the right to request access to the personal information we hold about you and to request that we update or correct it.
- Requests for access or correction should be made in writing to the contact person listed in Section 2.
- We will respond to your request within a reasonable time and may charge a reasonable fee for administrative costs associated with retrieving and providing access to the records.
- In rare circumstances, we may refuse access or correction where legally permitted or required.
7. Complaints
If you believe we have breached the Australian Privacy Principles, you may contact us with a formal complaint.
- Please direct your complaint to the contact person listed in Section 2, providing all details of the alleged breach.
- We will investigate the complaint and respond to you in writing within 30 days.
If you are not satisfied with our response, you may refer the matter to the Office of the Australian Information Commissioner (OAIC):
Office of the Australian Information Commissioner (OAIC)