Privacy Policy

Our Commitment to Privacy

We are committed to protecting personal and health information and handling it in a lawful, transparent, and secure manner. This Privacy Policy explains how we collect, use, store, and disclose information in accordance with the Privacy Act 1988 (Cth), the Australian Privacy Principles (APPs), and requirements relevant to NDIS providers and allied health services.

This policy applies to clients, participants, carers, referrers, partner organisations, providers, contractors, employees, and website or portal users.

Information We Collect

We may collect the following types of information:

Personal Information

  • Name, date of birth, address, email, and phone number
  • Emergency contact details
  • Employment or contractor information (where applicable)

Health Information (Sensitive Information)

  • Clinical assessments, treatment notes, care plans, and progress records
  • NDIS-related information, including plan details and goals
  • Referral and care coordination information

Business and Provider Information

  • Organisation details
  • Referral documentation
  • Service and reporting information

Digital Information

  • Portal access data and activity logs
  • Website usage data such as IP address and browser type

Health information is treated as sensitive information and handled with additional safeguards.

How We Collect Information

We collect information through:

  • Direct engagement with clients, participants, and carers
  • Referrals from NDIS providers, support coordinators, and partner organisations
  • Our website, digital portals, and secure online forms
  • Lawfully authorised third parties involved in care delivery

Where possible, information is collected directly from the individual or authorised representative.

Why We Collect and Use Information

We collect and use information to:

  • Deliver allied health and NDIS-related services
  • Coordinate care with providers, referrers, and partners
  • Manage referrals, bookings, and service delivery
  • Meet clinical, professional, and legal obligations
  • Support reporting, funding, and audit requirements
  • Maintain accurate healthcare records
  • Improve service quality and operational processes

We only use information for purposes that are reasonably necessary or required by law.

Disclosure of Information

We may share information with:

  • Treating clinicians and multidisciplinary care teams
  • NDIS providers, support coordinators, and referrers
  • Partner organisations involved in service delivery
  • Funding bodies, including the NDIS and insurers
  • Regulatory or government authorities where required by law
  • IT and administrative service providers supporting our systems

Information is only disclosed where permitted, relevant, and necessary.

Data Storage and Security

All personal and health information is stored securely within Australia.

We use secure, access-controlled systems and take reasonable steps to protect information from misuse, loss, unauthorised access, or disclosure. Access is limited to authorised personnel only.

Access and Correction

Individuals and authorised providers may request access to information we hold about them and request corrections if information is inaccurate, incomplete, or out of date.

Requests can be made using the contact details below. We respond within a reasonable timeframe and in accordance with privacy laws.

Digital Platforms and Portals

Our website and portals may use cookies or similar technologies to support functionality. These do not collect personal information unless voluntarily provided.

Portals are protected by access controls appropriate to user roles, including providers and partner organisations.

Retention of Information

We retain personal and health information in line with healthcare, NDIS, and legal record-keeping requirements. When information is no longer required, it is securely destroyed or de-identified.

Privacy Complaints

If you have concerns about how your information is handled, you may contact us using the details below.

We take privacy complaints seriously and will investigate and respond promptly. If you are not satisfied with our response, you may contact the Office of the Australian Information Commissioner (OAIC).

Changes to This Policy

This Privacy Policy may be updated from time to time to reflect changes in legal requirements or service delivery. The most current version will always be available on our website.

For privacy enquiries, access requests, or complaints:
Email: operations@betterhealthgroup.au