Privacy Policy
MyHealthPal is committed to ensuring the privacy and confidentiality of all personal and health information of our patients, team members and website visitors. We adhere to the National Privacy Principles (NPPs), and this policy is consistent with the Australian Privacy Principles within the Privacy Act 1988. The purpose of this Privacy Policy is to outline MyHealthPal’s ongoing obligations in respect of how we manage personal and health-related information and data.
What type of information do we collect?Why do we collect sensitive information?How do we collect sensitive information?What do we collect from others?How do we use the information?How do we protect sensitive information and personal data?How can an individual view, change or delete sensitive information and personal data?Can this policy be changed?Australian Privacy RightsQuestions?
What type of information do we collect?
The type of information MyHealthPal collects is to use the MyHealthPal service as it assists the Allied Health Professional team in prescribing an appropriate treatment plan. It may include sensitive information, defined in the Privacy Act to include information or opinion such as things as an individual’s:
- Name, address, date of birth, email, gender, racial or ethnic origin
- Health, exercise and medical history, ethnic background and current lifestyle
- Information about where and how individuals were referred to us
- Health information, including medical results, clinical and medical records
- Family medical history and their details
- Other medical service providers' commentary, diagnosis and test results
Why do we collect sensitive information?
To make use of the MyHealthPal service, it is necessary to create a personal account. For this MyHealthPal will only use sensitive information when it is reasonable and necessary:
- for the primary purpose for which it was obtained
- for a secondary purpose that is directly related to the primary purpose
- with consent
- where required or authorised by law
How do we collect sensitive information?
Where reasonable and practicable to do so, MyHealthPal will collect personal information only from an individual. MyHealthPal collects patient information directly from the individual via:
- Information entered from a sign-up form
- Face-to-face in the clinic
- Over the phone
- Through email communication
- From a direct referral from another provider
MyHealthPal may also collect personal information throughout our relationship with patients. For example, we may collect personal information:
- When an individual pays their bill or makes an appointment
- During a consultation
- Completing a form
Where reasonable and practicable to do so, MyHealthPal will collect personal information only from an individual. MyHealthPal collects patient information directly from the individual via:
MyHealthPal may collect individuals data from our website viewers via the use of cookies and other digital identifiers. It is important to know you can clear cookies or digital identifiers from your device and disable future use by changing the security settings on your web browser; however, doing this might mean that parts of our website(s) or apps may not work as they should.
What do we collect from others?
In some circumstances, MyHealthPal may be provided with information by third parties. In such a case, MyHealthPal will notify the individual concerned when it collects personal information from a third party either at the time of collection or as soon as practicable after that.
How do we use the information?
MyHealthPal may use individuals personal data for the following purposes:
- To allow the Allied Health Professional to use MyHealthPal, including the management of the exercise programs for individuals, the management of the individual's compliance with the exercise program and the exchange of exercise program templates with other users of MyHealthPal
- To allow the individual to use MyHealthPal, including the access to personalised exercise programs provided by the Allied Health Professional and monitoring the compliance and providing feedback to the Allied Health Professional
- To process payments by MyHealthPal
- To verify individuals identities, respond to enquiries and make contact with the individual when necessary
- To communicate with individuals about MyHealthPal programs and other services of MyHealthPal
- To configure the MyHealthPal app to the individual's goals and values
- To generate anonymous statistical data
- For an individual, MyHealthPal will only provide an individual's medical information to a third party if the individual or an individuals healthcare provider has given its consent for an individual's medical information to be disclosed (for example, to a third-party company and we will use reasonable endeavours to de-identify the information if such information can be collected
- MyHealthPal may, in addition to any other rights set out in this privacy policy, provide individuals sensitive information and personal data to third parties in the following cases:
- To any person that the individual authorises MyHealthPal to disclose your personal information to.
- To MyHealthPal partners, affiliates, contractors, and consultants, who are obligated to protect an individual's personal information and assist MyHealthPal or our related body corporates in providing MyHealthPal service or as otherwise set out in this privacy policy.
- To an individual's organisation, if they are acting on behalf of an organisation.
- To regulatory and government authorities, as authorised or required by law.
- To our professional advisors and third parties such as Medicare, DVA, private health insurance, SIRA, and if necessary, Collection Agencies
- To your healthcare provider, case managers, NDIS planners or auditors
- If it is permitted or obliged to do so on account of national or international laws, case law, and regulations, including government and regulatory authorities.
- If MyHealthPal considers it necessary to do so in defence of its rights.
- MyHealthPal may post an individual's testimonials/comments/reviews on the website containing personal information. MyHealthPal shall obtain the individual's consent via email before posting the testimonial.
- An individual can contact us at hello@myhealthpal.com.au if they do not wish to have their personal information used for any particular purpose. However, it is then possible that an individual may not access or use all or part of the MyHealthPal Service or our website. If MyHealthPal later advises the individual of intended use or disclosure and does not object to that use or disclosure or MyHealthPal is permitted or required by law to do so, MyHealthPal may do so.
How do we protect sensitive information and personal data?
MyHealthPal takes appropriate technical and organisational measures to protect an individual’s sensitive information and personal data against any form of unlawful use or loss but cannot guarantee that data transmission over the Internet will be wholly secure. MyHealthPal is unable to warrant the security of any information provided to us over the Internet. Due to the medical nature of some of the sensitive information and personal data provided through the MyHealthPal service, MyHealthPal uses reasonable endeavours to incorporate a high level of security.
To protect the confidentiality and integrity of individuals personal data, we:
To protect the confidentiality and integrity of individuals personal data, we:
- Have internal policies to keep data private and confidential following this privacy policy.
- Encrypt all communications between MyHealthPal and our users (http: via SSL, email via TLS).
- Use reasonable endeavours to encrypt all appropriate individuals health information in our database where practical to do so ("at-rest").
- Limit information access inside our company.
- Use an electronically and physically secured data centre.
- Automatically log off after a certain period of inactivity by Allied Health Professionals.
- All users are required to choose strong passwords and create a new password every 60 days.
- Use up-to-date development and testing systems.
- Use up-to-date server management technologies.
How can an individual view, change or delete sensitive information and personal data?
If an individual wish to know what personal data MyHealthPal has collected about them or if they wish to change data they cannot change in their account, they can send their request to hello@myhealthpal.com.au.
Before MyHealthPal provides individuals with access to their personal information, MyHealthPal may require some proof of identity. To the extent permitted by law, MyHealthPal will use reasonable endeavours to provide individuals with their personal information within four weeks of their request. Generally, no fee is charged from accessing personal information unless the request is complex or resource intensive. If there is a charge, it will be reasonable, and the individual will be informed of the fee beforehand. In some circumstances where MyHealthPal corrects or updates a record, MyHealthPal may still require the retention of the original record. MyHealthPal will retain an individual’s data for as long as their account is active or as needed to provide the service, resolve disputes, enforce agreements, or comply with any legal obligations. If individuals wish to delete their account or request that MyHealthPal no longer uses their data, they can contact us at hello@myhealthpal.com.au.
Can this policy be changed?
This policy can be amended in the future. It is recommended to regularly check the website www.myhealthpal.com.au for any changes that have been made to this policy. The continued use of the service and this website after any changes to this policy means that an individual consents to such changes.
Australian Privacy Rights
If the individual is an Australian resident, they consent and acknowledge that Australian Privacy Principle 8.1 will not apply to an overseas disclosure of their personal information following this policy. In addition, if the individual has any requests or complaints about this policy, they may send these to hello@myhealthpal.com.au
Questions?
If you or the individual has any questions, please do not hesitate to contact us via hello@myhealthpal.com.au
What type of information do we collect?
What type of information do we collect?
The type of information MyHealthPal collects is to use the MyHealthPal service as it assists the Allied Health Professional team in prescribing an appropriate treatment plan. It may include sensitive information, defined in the Privacy Act to include information or opinion such as things as an individual’s:
- Name, address, date of birth, email, gender, racial or ethnic origin
- Health, exercise and medical history, ethnic background and current lifestyle
- Information about where and how individuals were referred to us
- Health information, including medical results, clinical and medical records
- Family medical history and their details
- Other medical service providers' commentary, diagnosis and test results
Why do we collect sensitive information?
Why do we collect sensitive information?
To make use of the MyHealthPal service, it is necessary to create a personal account. For this MyHealthPal will only use sensitive information when it is reasonable and necessary:
- for the primary purpose for which it was obtained
- for a secondary purpose that is directly related to the primary purpose
- with consent
- where required or authorised by law
How do we collect sensitive information?
How do we collect sensitive information?
Where reasonable and practicable to do so, MyHealthPal will collect personal information only from an individual. MyHealthPal collects patient information directly from the individual via:
- Information entered from a sign-up form
- Face-to-face in the clinic
- Over the phone
- Through email communication
- From a direct referral from another provider
MyHealthPal may also collect personal information throughout our relationship with patients. For example, we may collect personal information:
- When an individual pays their bill or makes an appointment
- During a consultation
- Completing a form
Where reasonable and practicable to do so, MyHealthPal will collect personal information only from an individual. MyHealthPal collects patient information directly from the individual via:
MyHealthPal may collect individuals data from our website viewers via the use of cookies and other digital identifiers. It is important to know you can clear cookies or digital identifiers from your device and disable future use by changing the security settings on your web browser; however, doing this might mean that parts of our website(s) or apps may not work as they should.
What do we collect from others?
What do we collect from others?
In some circumstances, MyHealthPal may be provided with information by third parties. In such a case, MyHealthPal will notify the individual concerned when it collects personal information from a third party either at the time of collection or as soon as practicable after that.
How do we use the information?
How do we collect sensitive information?
Where reasonable and practicable to do so, MyHealthPal will collect personal information only from an individual. MyHealthPal collects patient information directly from the individual via:
- Information entered from a sign-up form
- Face-to-face in the clinic
- Over the phone
- Through email communication
- From a direct referral from another provider
MyHealthPal may also collect personal information throughout our relationship with patients. For example, we may collect personal information:
- When an individual pays their bill or makes an appointment
- During a consultation
- Completing a form
Where reasonable and practicable to do so, MyHealthPal will collect personal information only from an individual. MyHealthPal collects patient information directly from the individual via:
MyHealthPal may collect individuals data from our website viewers via the use of cookies and other digital identifiers. It is important to know you can clear cookies or digital identifiers from your device and disable future use by changing the security settings on your web browser; however, doing this might mean that parts of our website(s) or apps may not work as they should.
How do we protect sensitive information and personal data?
How do we protect sensitive information and personal data?
MyHealthPal takes appropriate technical and organisational measures to protect an individual’s sensitive information and personal data against any form of unlawful use or loss but cannot guarantee that data transmission over the Internet will be wholly secure. MyHealthPal is unable to warrant the security of any information provided to us over the Internet. Due to the medical nature of some of the sensitive information and personal data provided through the MyHealthPal service, MyHealthPal uses reasonable endeavours to incorporate a high level of security.
To protect the confidentiality and integrity of individuals personal data, we:
To protect the confidentiality and integrity of individuals personal data, we:
- Have internal policies to keep data private and confidential following this privacy policy.
- Encrypt all communications between MyHealthPal and our users (http: via SSL, email via TLS).
- Use reasonable endeavours to encrypt all appropriate individuals health information in our database where practical to do so ("at-rest").
- Limit information access inside our company.
- Use an electronically and physically secured data centre.
- Automatically log off after a certain period of inactivity by Allied Health Professionals.
- All users are required to choose strong passwords and create a new password every 60 days.
- Use up-to-date development and testing systems.
- Use up-to-date server management technologies.
How can an individual view, change or delete sensitive information and personal data?
How can an individual view, change or delete sensitive information and personal data?
If an individual wish to know what personal data MyHealthPal has collected about them or if they wish to change data they cannot change in their account, they can send their request to hello@myhealthpal.com.au.
Before MyHealthPal provides individuals with access to their personal information, MyHealthPal may require some proof of identity. To the extent permitted by law, MyHealthPal will use reasonable endeavours to provide individuals with their personal information within four weeks of their request. Generally, no fee is charged from accessing personal information unless the request is complex or resource intensive. If there is a charge, it will be reasonable, and the individual will be informed of the fee beforehand. In some circumstances where MyHealthPal corrects or updates a record, MyHealthPal may still require the retention of the original record. MyHealthPal will retain an individual’s data for as long as their account is active or as needed to provide the service, resolve disputes, enforce agreements, or comply with any legal obligations. If individuals wish to delete their account or request that MyHealthPal no longer uses their data, they can contact us at hello@myhealthpal.com.au.
Can this policy be changed?
Can this policy be changed?
This policy can be amended in the future. It is recommended to regularly check the website www.myhealthpal.com.au for any changes that have been made to this policy. The continued use of the service and this website after any changes to this policy means that an individual consents to such changes.
Australian Privacy Rights
Australian Privacy Rights
If the individual is an Australian resident, they consent and acknowledge that Australian Privacy Principle 8.1 will not apply to an overseas disclosure of their personal information following this policy. In addition, if the individual has any requests or complaints about this policy, they may send these to hello@myhealthpal.com.au
Questions?
Questions?
If you or the individual has any questions, please do not hesitate to contact us via hello@myhealthpal.com.au
