Privacy policy.
Hi there! This website is owned and operated by Claire Strong ABN 88 288 374 778, trading as Claire Strong Naturopath. If you have any questions or need information, please contact me at claire@naturopathmargaretriver.com.au
My Privacy Policy describes how I collect and manage your personal information when you interact with this site. I take this responsibility very seriously; it complies with the Australian Privacy Principles set out in the Privacy Act 1988 (Cth) (Privacy Act). If you have any questions or concerns about how your personal information is being handled, please contact me.
I understand that visitors from the EU may access this site, so I also aim to comply with the General Data Protection Regulations (GDPR).
PERSONAL INFORMATION
When you drop by to visit this website, or opt in to offers & newsletters, or you choose to become my client, I will ask to collect the following kinds of personal information from you:
· Your contact details - your name, address, phone numbers and email address, and possibly the country that you live in
· Your interests & preferences – for example, your occupation, your opinion about future focus topics, and products or services that may interest you. It might also include information that helps me tailor my content to your needs when you sign up for one of my webinars or events.
Internet - with your consent, I may collect your IP address, and information about your browsing history to help me gauge visitor traffic, and improve the usability, relevance and appeal of my website.
COLLECTION AND USE
Personally identifiable information is collected when booking an appointment, when you sign up for newsletters, or opt-in to products or other information, or by using cookies.
I use this information to provide you with the best service and support, relevant news and updates about my services, and to improve the website and the services I provide.
I will only collect your personal information:
· With your full awareness and consent, such as when you email me, tick a checkbox or fill in a form to provide me with information.
· If I need it to provide you with information or services that you request
· If I am legally required to collect it
· For necessary administrative processes if you become my client
· If I believe that I can demonstrate a legitimate interest in using your data for marketing purposes, although I will always give you a choice to opt out.
SENSITIVE INFORMATION
I understand that some personal information such as your date of birth and your health history (past and present) is particularly sensitive. I will only collect sensitive information by methods that are reasonably secure, such as:
· through my intake form when you book an appointment
· when we see eachother face to face in an appointment
· in a Zoom or Skype consultation
· when you send me information in an email.
I collect this information because I want to provide you with the individualised services you have reached out for, and I want to ensure you have the most appropriate interaction and support from me.
I commit to securely storing and handling your sensitive information.
· Sensitive information is stored in a locked filing cabinet and/or on a password protected computer.
· Only I or authorised team members may access sensitive material.
· Some sensitive information may be stored securely online, or in the cloud through [name of service provider]. You can find out more about their security provisions here: [link to service provider’s security policy.]
Sometimes, I will collect sensitive information from children under the age of 18. This would be under the following circumstances:
· in the presence of their parent or guardian
· with their parent or guardian’s full consent
All information collected from minors is securely stored in accordance with this privacy policy.
All archived sensitive information is securely destroyed 7 years after last contact with a client, or when a client has reached the age of 25.
PROFESSIONAL CONSIDERATIONS
I am subject to the following regulations regarding the collection of personal information:
· As a naturopath, I owe you a professional duty of confidentiality. I take this responsibility very seriously and will always strive to promote your best interests.
· You may choose not to provide me with your personal information. However, if you choose not to, I may not be able to provide you with the services that you request, nor the best services I can provide.
USE OF PERSONAL INFORMATION
Reasons I may disclose your personal information include:
· to provide you with the services you have requested eg pathology requests, referrals to GP or other practitioner
· to send you products that you have purchased
In order to do this, I may share some relevant or need-to-know personal information with:
· my virtual assistant (VA)
· companies who offer a patient ordering system (with your permission)
· Australia Post or courier companies
I will also disclose your information if required by law to do so or in circumstances permitted by the Privacy Act – for example, where I have reasonable grounds to suspect that unlawful activity, or misconduct of a serious nature, that relates to my functions or activities has been, is being or may be engaged in, and in response to a subpoena, discovery request or a court order.
If you have any concerns regarding the disclosure of your personal information, please get in touch with me to discuss this personally.
DISCLOSURE FOR FOREIGN RESIDENTS
I will use all reasonable means to protect the confidentiality of your personal information while in my possession or control. I will not knowingly share any of your personal information with any third party other than the service providers who assist me in providing the information and/or services I am providing to you. To the extent that I do share your personal information with a service provider, I would only do so if that party has agreed to comply with our privacy standards as described in this privacy policy. However, some of my service providers may be overseas and may not be subject to Australian Privacy Laws or compliant with GDPR. Please contact me if you have any concerns about the potential disclosure of your information.
SECURITY
I take reasonable physical, technical and administrative safeguards to protect your personal information from misuse, interference, loss, and unauthorised access, modification and disclosure.
I manage risks to your personal information by:
· storing files securely
· ensuring that only I or key personnel have access to sensitive information
· releasing information to service providers on a strictly need-to-know basis
· conducting regular audits of my security systems.
As mentioned above, your personal information may also be stored with a third-party provider, where it will be managed under their security policy:
· eg. Mailchimp – link to their policy https://mailchimp.com/about/security/
From time to time I may combine information provided by you with information gathered from, for example Facebook, Google Analytics, personal contact. If you do not wish this to occur, please contact me.
ACCESS TO INFORMATION
You can contact me to access, correct or update your personal information at any time. Unless I am subject to a confidentiality obligation or some other restriction on giving access to the information which permits me to refuse you access under the Privacy Act, and I believe there is a valid reason for doing so, I will endeavour to make your information available you within 30 days.
Please begin the process by sending an email requesting access to your information to me at claire@naturopathmargaretriver.com.au and I will endeavour to respond within 7 days.
COMPLAINTS
If a breach of this Privacy Policy occurs, or if you wish to lodge a complaint into my handling of your personal information, you may contact me by sending an email outlining your concerns to claire@naturopathmargaretriver.com.au and I will endeavour to respond within 48 hours.
If you are not satisfied with my response to your complaint you may seek a review by contacting:
· the Office of the Australian Information Commissioner using the information available at http://www.oaic.gov.au/privacy/privacy-complaints
· the health ombudsman in your state or territory. In Western Australia, visit https://www.hadsco.wa.gov.au/home/
NOTIFICATION OF CHANGE
If I decide to change my Privacy Policy, I will post a copy of the revised policy on my website.
NOTIFICATION OF BREACH
If I have reason to suspect that a serious data breach has occurred and that this may result in harm or loss to you, I will immediately assess the situation and take appropriate remedial action. If I still believe that you are at risk, I will notify the Office of the Information Commissioner and either notify you directly, or if that is not possible, publicise a notification of the breach on this website.