Privacy Policy

This Privacy Policy outlines how your personal information is collected, used, and protected by. Please read this policy carefully to understand how we handle your data.

We are committed to keeping your information safe and secure and only use it for healthcare, administration and billing purposes. We will never sell or trade your information.

Privacy Policy:

1. Retention of Medical Records:

   • Medical records may be retained for up to 7 years or until the patient turns 25 whichever is longer, in compliance with legal and regulatory standards.

1. Information We Collect:

   • Personal Information: We collect your name, contact details, and relevant medical history. We may also collect your Personally Identifiable Information including Medicare Number and details, Immunisation History and Registry details,

2. How We Use Your Information:

   • Treatment Purposes: Your personal and medical information is used to provide health care.
   • Appointment Management: Information is used for scheduling and managing appointments via our website and booking portal.
   • Communication: We may contact you for appointment reminders, follow-ups, or to provide important information.
   • All employees of Lillach Pty Ltd are required to observe the obligations of confidentiality in the course of their employment

3. Website and Booking Portal:

   • Data Security: We employ industry-standard measures to secure your data on our website and booking portal.
   • Cookies: We may use cookies for a better user experience. Refer to our Cookie Policy for details.

4. Medical Records Software:

   • Secure Storage: Your medical records are stored securely using advanced encryption methods.
   • Access Control: Access to medical records is restricted to authorised personnel only.
   • Data is retained in Australian Data Centres.

5. Marketing and Other Contacts

   • Non-patient data including centre management contact data, scheduling and emails are recorded in Customer Relationship Management (CRM) and Marketing software hosted in European or Australian data centres.
   • These are kept completely separate to all patient health data. Patient contact information is not stored on these systems.

6. Access Permissions:

   • Default permissions grant practising medical staff and senior administration staff access to patient records for treatment purposes.
   • Individuals have the right to obtain their personal information in accordance with the Federal Privacy Act from 20 December 2001 onwards. Requests must be made in writing and an acknowledgement letter will be sent to the patient within 14 days confirming the request and detailing whether the request can be complied with, and an indication of any costs associated with providing the information. Time spent and photocopying costs when processing a request can be passed on to the requesting patient.
   • To protect the rights of a child’s privacy, access to a child’s medical information may at times be restricted for parents and guardians. Release of information may be referred back to the treating Doctor where their professional judgement and the law will be applied.
   • Individuals may be asked to clarify the scope of the request
   • We may deny access to your medical records in certain circumstances permitted by law, for example, if disclosure may cause a serious threat to your health or safety. We will always tell you why access is denied and the options you have to respond to our decision.

7. Sharing Restrictions:

   • Patient records will not be shared without permission, however, due to the casual nature of our service and to ensure continuity of care, it is recommended that patients grant us permission to send consultation notes to their Regular GP.
   • Patients may request medical records be transferred to another practice.

8. Disclosure of Information:

   • Except with permission in relation to Section 6 above, we do not sell, trade, or otherwise transfer your information to outside parties without your consent, except as required by law.

9. Your Rights:

   • Access to this and other relevant policies. Copies can be requested by emailing privacy@docdaycare.com.au
   • You have the right to access, correct, or obfuscate your personal information, subject to legal requirements. Contact us for any privacy-related requests (privacy@docdaycare.com.au).
   • Patients may access all their personal information held by us, subject to a few exceptions.
   • We will attempt to respond to written requests for access within a reasonable period (generally 20 business days).
   • It is essential to verify the identity of the requesting person.
   • We may not provide access if we reasonably believe:
     • it would unreasonably impact the privacy of another person
     • it might threaten the life, health or safety of another person or the public
     • other exceptions to providing access might also apply.
   • Refusal to grant access will be communicated in writing with reasons and the process for lodging a complaint.

10. Updates to Privacy Policy:

    • We may update this Privacy Policy periodically. Check our website for the latest version.

11. Office of the Australian Information Commissioner (OAIC)

    • You may also contact the OAIC if you are not satisfied with our halding of Privacy matters. Generally, the OAIC will require you to give them time to respond before they will investigate. For further information visit www.oaic.gov.au or call the OAIC on 1300 363 992.

12. Superseding Legal Requirements

    • All terms and provisions outlined in this agreement shall be subject to any current or future legal requirements, regulations, or laws. In the event of any conflict between the terms of this agreement and such legal obligations, the latter shall prevail

Consent:

By using our services, you consent to the terms outlined in this Privacy Policy.

If you have any questions or concerns about our Privacy Policy, please contact us. Thank you for entrusting us with your personal information.