Privacy Policy

Gympie Day and Evening Clinic
Shop 5-6, 30 Excelsior Road, Gympie, Queensland 4570
Phone: (07) 2140 4888
Email: gympiedayandeveningclinic@gmail.com

Effective Date: July 30, 2025

Our Commitment to Privacy

Gympie Day and Evening Clinic values your trust and is committed to ensuring the privacy and security of your personal and health information. We comply with the Privacy Act 1988 (Cth), the Australian Privacy Principles (APPs), and all relevant healthcare privacy laws.

Types of Information We Collect

We collect only information necessary to provide you with safe, high-quality healthcare and efficient administrative services. This includes:

Personal Details

  • Full name, date of birth, gender, address, contact details, email, Medicare and healthcare fund information, emergency contacts.

Health & Sensitive Information

  • Medical and family history, medications, allergies, immunisation status, clinical notes, diagnoses, treatment plans, specialist reports, referrals, pathology and imaging results, mental health and psychological data where relevant.

Service and Practice Details

  • Appointment records, billing and payment information, online bookings, feedback, complaints, and telehealth data (audio/video, only with your consent).

Website and Electronic Data

  • IP address, browser or device details, site usage data for security and service enhancement (collected via cookies and analytics tools).

How We Collect Information

  • Directly from you (in person, phone calls, online forms, emails, telehealth).
  • From your authorised representatives (guardians, family, legal custodians if permitted).
  • From other healthcare providers, hospitals, pathology/radiology partners, and allied health professionals involved in your care (with your consent).
  • Through our website, electronic booking systems, and telehealth platforms.

Why We Collect Your Information

Your information is essential to:

  • Identify you and create or update your patient record.
  • Provide effective medical care, diagnosis, and treatment (in person and via telehealth).
  • Schedule and remind you about appointments, manage billing, and process Medicare/private insurance claims.
  • Refer you to appropriate specialists, pathology or imaging providers, or allied health professionals.
  • Coordinate emergency or after-hours care when necessary.
  • Meet mandatory reporting obligations (public health, regulatory).
  • Conduct quality assurance programs, clinical audits, and practice accreditation.
  • Respond to patient enquiries, complaints, or requests for access/correction.
  • Secure practice operations, including fraud prevention and staff training.

Use and Disclosure of Your Information

We use and disclose your information only when necessary and only as allowed by law. This includes:

  • With healthcare providers involved in your care (GPs, specialists, allied health, pathology and imaging centres).
  • With your consent, or when legally required, to nominated family or carers, hospitals, public health authorities, Medicare, DVA, or private insurers.
  • Service providers (IT, billing, secure data storage) strictly bound by privacy agreements.
  • In emergencies, when required to protect life, health or safety.
  • If required by law (court orders, mandatory reporting, regulatory compliance).
  • De-identified information for clinical audits and quality improvement.

We do not sell or rent your details or use your data for direct marketing unless you opt in. You can withdraw your consent to marketing communications at any time.

Storage and Security of Personal Information

Your records are confidential and maintained using advanced security safeguards to protect against loss, unauthorised access, misuse or breach:

  • Electronic medical records are encrypted and secured with password protection, firewall, and role-based access controls.
  • Paper records are stored in locked cabinets in restricted access areas.
  • Telehealth and online communications are encrypted and follow industry best practices.
  • Staff are trained regularly in privacy, confidentiality and cyber security practices.
  • Regular audits, system updates, and secure cloud storage are used to minimise risks.

If, despite our best efforts, a data breach with potential harm occurs, we comply with the Notifiable Data Breaches scheme and promptly inform affected individuals and authorities.

Access and Correction of Your Information

You have the right to access your personal and health information, or request correction or update of your records, by contacting the Practice Manager in writing or via email.

  • We will verify your identity before providing access.
  • Normally, requests are fulfilled within 30 days. Complex requests may incur a reasonable fee.
  • You may add a statement if you disagree with information we hold and we will attach it to your record.
  • Some access may be limited (for safety, legal reasons, or impact on others) but you’ll be informed in writing if that occurs.

Children, Vulnerable Patients and Telehealth

  • Consent for care and information management for children (under 16) is normally via parent or guardian; mature minors are assessed individually.
  • For patients with impaired capacity, information is managed with reference to guardianship/support arrangements and in their best interests.
  • Telehealth services are subject to the same privacy standards as in-person care; consent is obtained before recording or storing telehealth sessions.

Cookies, Website Analytics, and Third Parties

  • We use cookies and analytics to improve your website experience. Cookies collect only non-identifiable information and can be disabled in your browser settings (though functionality may be limited).
  • Our website may contain third-party links, but we cannot guarantee the privacy practices of external sites. We recommend reviewing those policies separately.

Overseas Disclosure

We do not routinely transfer personal information overseas. Any rare circumstance where this is unavoidable will only be done with your informed consent and in compliance with Australian privacy law.

Consequences of Not Providing Information

If you choose not to provide requested personal or health information, it may hinder our ability to deliver comprehensive medical services, process claims, or communicate important health updates. We will always discuss any implications with you.

Questions, Feedback and Complaints

If you have concerns, wish to access or correct your records, or believe your privacy has been breached, please contact:

Practice Manager
Gympie Day and Evening Clinic
Shop 5-6, 30 Excelsior Road, Gympie, QLD 4570
Phone: (07) 2140 4888
Email: gympiedayandeveningclinic@gmail.com

  • We aim to acknowledge complaints within 5 business days and resolve them in 30 days.
  • If you feel your issue has not been resolved, you may contact the Office of the Australian Information Commissioner (OAIC):
    Phone: 1300 363 992
    Website: www.oaic.gov.au

Updates to This Policy

This privacy policy is reviewed regularly and updated to reflect changes in laws, technology, or services. The latest version will always be available on our website. Continued use of our services constitutes acceptance of the current privacy policy.

Gympie Day and Evening Clinic is fully committed to ensuring your privacy and delivering holistic, patient-centred care throughout your health journey.