Privacy & Confidentiality Policy
Our commitment to protecting your personal and sensitive information
Policy Statement
At Lead Therapy Pty Ltd, we are committed to maintaining the privacy and confidentiality of the personal and sensitive information entrusted to us by our clients, employees, and stakeholders. This Privacy and Confidentiality Policy outlines our dedication to protecting the privacy of individuals and ensuring compliance with privacy laws and regulations.
Collection of Information
- Our data collection practices adhere to the principles of necessity for the provision of services, conducted in a lawful and equitable manner.
- Information is gathered with the explicit knowledge and consent of the individual, with a transparent communication of the intended purpose.
- Collected information may encompass personal details such as name, address, date of birth, gender, health information, family history, as well as financial details like credit card and direct debit information, along with contact details.
- Storage of this information may occur in our computer system and/or in handwritten records.
- While our preference is to collect information directly from clients, practical considerations may necessitate obtaining data from other sources, including fellow healthcare providers.
- Various methods are employed for information collection, encompassing phone interactions, written correspondence, face-to-face engagements within our practice, and online transactions over the Internet, managed by both therapists and administrative staff.
- In emergency scenarios, information collection may extend to obtaining relevant details from the individual's relatives or friends.
- Compliance with legal obligations may require the retention of medical records for stipulated periods, contingent upon the individual's age at the time of service provision.
Use and Disclosure
- Personal and sensitive information is strictly confidential and will be used only for the purposes for which it was collected unless otherwise authorised by the individual or required by law.
- Information will not be disclosed to third parties without the explicit consent of the individual, except where required or permitted by law.
- There are circumstances where we may be permitted or required by law to disclose your personal information to third parties, such as Medicare, police, insurers, solicitors, government regulatory bodies, tribunals, and courts of law.
Data Quality and Security
- We employ robust security measures to safeguard personal and sensitive information, preventing unauthorised access, disclosure, alteration, or destruction.
- Access to such information is restricted exclusively to employees and authorised personnel with a legitimate need as outlined in this policy.
- We are committed to maintaining the accuracy, completeness, relevance, and currency of personal information, taking reasonable steps to achieve this goal.
- If the information in our possession is found to be inaccurate, incomplete, or outdated, we encourage individuals to contact us in writing via info@leadtherapy.com.au.
- The protection of personal information involves securing our premises, implementing password protection and access restrictions on databases, and utilising locked cabinets and rooms for physical record storage.
- Our staff adheres to these policies even when working remotely, ensuring compliance with data encryption, protection standards, and settings, along with securing their private network.
Access
Clients have the right to request access to information held by Lead Therapy Pty Ltd. Such requests should be submitted in writing to our contact below.
Retention and Disposal
Information will be retained only for as long as necessary to fulfil the purposes for which it was collected or as required by law. Secure and confidential disposal methods will be employed for the destruction of information that is no longer needed.
Complaints
Complaints about the privacy of personal information can be made in writing. We will endeavour to resolve it in accordance with our complaints handling procedures.
If the complaint is not resolved, an application can be made to the Australian Information Commissioner or the Privacy Commissioner in your State or Territory.
Overseas Transfer of Data
We will not transfer your personal information to an overseas recipient unless we have your consent or we are required to do so by law.
Consent
We obtain explicit consent from individuals before collecting, using, or disclosing their personal or sensitive information, unless an exception under privacy laws applies.
Implementation
Staff Training
All employees are trained on the importance of privacy and confidentiality and are educated about their responsibilities in handling personal and sensitive information.
Privacy Notices
Individuals will be provided with privacy notices outlining the purposes of information collection, how it will be used, and their rights regarding their data.
Incident Response
In the event of a privacy breach, we have established procedures to promptly address and mitigate the impact of such incidents.
Review and Revision
This policy will be reviewed annually and updated as needed to reflect changes in legislation, standards, or organisational practices.
Effective date: 15 January 2026
