Privacy

Daniel Searle Physiotherapy (hereinafter called “DSP”) is committed to protecting your privacy. This Privacy Policy applies to the DSP Web Site and governs data collection and usage. By using this website and its associated gateways, you consent to the data practices described in this statement.

Collection of your Information

DSP collects personally identifiable information, such as your name, e-mail address and phone numbers.  This information is used for the operation of the service and to maintain quality of the service.

Any information collected by DSP is collected via correspondence from you.  This may be via telephone, email, mail, forms, through our website or our associated 3rd party websites.

Use of your Personal Information

DSP only collects personal information necessary to provide services that you have requested.

DSP also uses your personally identifiable information to inform you of other products or services available and to keep you apprised of relevant activities.  We may also contact you via surveys to conduct research about your opinion of current services or of potential new services that may be offered.

DSP does not sell, rent or lease its stored information to 3rd parties. DSP uses 3rd party providers for the provision of services and the operation of the organisation.  These providers include Stripe (online credit/debit card payments), Google (surveys/search indexing), VentraIP (website hosting/email exchange), WordPress (website design/forms), Woocommerce (purchases) and Simplybook (Appointment reservations).  DSP does not provide any personal information to these providers other than that which is required to use their products.

DSP reserves the right to disclose your personally identifiable information as required by law and when we believe that disclosure is necessary to protect our rights and/or comply with a judicial proceeding, court order or legal process served on DSP.

Storage of your personal and health records

As part of your treatment DSP obtains, creates and updates your medical records which contains your date of birth, medicare number, details of your treatment, specalist reports, imaging scans, referrals and treatment notes.  All this information relating to your health, medical condition and treatment is kept securely on our own private ‘in-house’ systems.

All data backups are stored securely.  Offsite backups via the internet are encrypted and secured using private key and AES-256 encryption.  No personal or health records are stored in cloud based 3rd party systems.

DSP does as part of the treatment process as required provide reports to referring practioners, insurers and relevant allied health professionals.  This information does contain personal and medical information.

Under the Health Records and Information Privacy Act 2002, you have the right to access this information at any time, this ‘Act’ also requires us to keep your data for 7 years after which it is permanently deleted.

Cookies

DSP uses cookies to keep track of your cart contents when making a purchase.

Security of your Personal Information

DSP secures your personal information from unauthorized access, use or disclosure. DSP secures the personally identifiable information you provide on computer servers in a controlled, secure environment, protected from unauthorized access, use or disclosure.

DSP does not transmit personal information to other websites.

Security of transactions and payments

DSP uses Stripe as their payment gateway for online credit and debit card transactions.  No card details or transaction information is recorded, processed or stored by DSP.  Transactions are processed for thousands of merchants in a safe and secure means via the internet.  All online transactions are processed using PCI Data Security Standards (PCI DSS) compliant gateways as secured payments.  Stripe complies with tier 1PCI DSS.

DSP complies with the requirements of the PCI Data Security Standards and completes assessments as required under the standard.

Payments are fully automated with immediate response.  Your credit card cannot be viewed by DSP or any outside party.  All transactions are performed under 128 Bit SSL certificate and encrypted for storage.

Stripe’s security information can be viewed here.

Links

Links on the DSP website to external entities and providers are not covered within this policy.  The terms and conditions set out in the policy only cover the domain name of danielsearle.com.au

Changes to this Statement

DSP will occasionally update this Statement of Privacy to reflect company and customer feedback. We encourage you to periodically review this Statement to be informed of how your information is protected.

Contact Information

DSP welcomes your comments regarding this Privacy Policy. If you believe that we have not adhered to this Statement, please contact us at admin@danielsearle.com.au

Last updated 21st November 2023