Privacy Policy

1. About this Policy

1.1. The Privacy Act 1988 (Cth) (Act) requires certain entities to comply with the Australian Privacy Principles and to have a privacy policy. This privacy policy outlines the personal information handling practices.

1.2. This policy is written in language which is simple and accessible. The particular legal obligations when handling personal information can be found in the Act. Whenever we update our practices with respect to information handling we will update this policy accordingly.

2. Overview

2.1. As part of our ordinary business operations we often hold, use and disclose personal information. These operations and activities include:

• licensing use of software to end-user organisations (our clients);
• invoicing our clients;

2.2. Our clients may provide health services to their patients. For avoidance of doubt, our business operations do not include provision of health services and is limited to the licensing of software to our clients.

3. Collection of your personal information

3.1. We may collect information as part of our business activities. The usual way we obtain personal information is when our clients provide that information to us including but not limited to via email, hard copy forms, over the telephone or via our websites.

3.2. We may collect personal information such as contact details of our client's personnel authorised as users of the software, what services you are seeking, and payment information.

3.3. We may also collect personal information if you are a business associate or partner and have made such information available to us.

3.4. We do not collect personal information or health about our client's patients or customers gathered through our software. All personal information or health information collected by our clients using the software is not stored in our possession or control. The collection and storage of personal information or health information about our client's patients and customers is at the discretion and control of our clients. We do not have access or control in respect of such information.

3.5. There are a number of ways that we may collect information through the website from time to time:

• Cookies are data files transferred onto user devices by websites as a record and also to increase functionality of the websites. If you do not want to accept cookies, you should set your browser preferences to reject all cookies before accessing the websites.
• Analytics tools such as Google Analytics collect information about your visit and interaction with our website.

4. Disclosure

4.1. There are few situations where it is reasonably necessary to disclose your information to external parties. For example:

• we may disclose your information to agents or contractors where we are engaging a third party on our behalf to carry our work or services;
• in some circumstances, we may also disclose your information (with your consent) to business partners and professionals where you are in need of a referral in respect of services which we do not offer;
• if you a a contractor, we may disclose your information and identity to our clients;
• we may disclose your credit information to a CRB in order to obtain a credit report, or in several cases, to report a substantial credit default;

4.2. We may also make disclosure of your personal information where we are compelled by law to do so. For example, if we are served with a court-issued subpoena to produce documents or information.

4.3. Your personal information will not be used, sold, rented or disclosed for any other purposes.

4.4. In the event that unauthorised access, disclosure or loss of your personal information occurs, reasonable endeavours will be used to minimise any risk of consequential serious harm.

4.5 We are unlikely to disclose your personal information to overseas recipients unless you consent or such disclosure is otherwise required by law. Our information and records are stored on a local server in Australia.

5. Storage and security of personal information

5.1. We protect the storage and security of your personal information by:

• periodically assessing the risk of misuse, loss, unauthorised access or modification of the information; and
• taking measures to address those risks, for example, by educating staff about the importance of your privacy and the risks of mishandling of that information.

5.2. We may destroy personal information if it is no longer needed for our records or delivery of our services.

6. Accessing and correcting your personal information

6.1. Australian Privacy Principles 12 and 13 state that you have the right to request access to all personal information we hold about you and that we correct that information if it is false or inaccurate. You can do this by contacting us via the contact us page and we will respond within 30 days.

6.2. Before providing access to your personal information or correcting our records we will ask you to verify your identity.

6.3. We confirm that we do not collect, own, maintain or control personal information or health information about you if you are a patient or customer of one of our clients that uses our software. Your principle line of enquiry when seeking such information is with the person or organisation that collected your information.

6.4. If you require access to your personal information or health information then you must contact the organisation that collected your information.

7. How to make a complaint

7.1. if you are not satisfied with our handling of your personal information, we recommend you first contact us via the contact us page and complain to us directly. We will respond to the complaint and attempt to resolve the complaint within 30 days of the date of the complaint.

7.2. If you are not satisfied with our  response to your complaint, you should contact the Office of the Australian Information Commissioner and complete a privacy complaint form.