Sarah Browne Hypnotherapy is committed to providing quality services to you and this policy outlines our ongoing obligations to you in respect of how we manage your Personal Information.
We have adopted the Australian Privacy Principles (APPs) contained in the Privacy Act 1988 (Cth) (the Privacy Act). The NPPs govern the way in which we collect, use, disclose, store, secure and dispose of your Personal Information.
A copy of the APPs may be obtained from the website of The Office of the Australian Information Commissioner at www.aoic.gov.au
What is Personal Information and why do we collect it?
Personal Information is information or an opinion that identifies an individual. Examples of Personal Information we collect include: names, addresses, email addresses, and phone numbers.
This Personal Information is obtained in various ways including by telephone, by email, and via our website www.sarahbrownehypnotherapy.com, and from an electronic medical record system.
Sarah Browne Hypnotherapy does not collect personally identifiable information about you except when you specifically provide such information on a voluntary basis.
We collect your Personal Information for the primary purpose of providing our services to you. In order to provide hypnotherapy services, we will need to collect and use your personal information.
When you visit our website and contact us to make an appointment, you may be asked to complete an online form to submit information about you to us. This information may include:
By using our website, you consent to the receipt of direct marketing material, such as a newsletter, or communication from time to time including promotions and products from us. This information will only come from us. We will only use your personal information for this purpose if we have collected such information direct from you, and if it is material of a type which you would reasonably expect to receive from us. We do not use sensitive personal information in direct marketing activity. We will not onsell your personal information to other providers without your consent.
Our marketing material will include a simple means by which you can request not to receive further communication of this nature.
Sensitive information is defined in the Privacy Act to include information or opinion about such things as an individual's racial or ethnic origin, political opinions, membership of a political association, religious or philosophical beliefs, membership of a trade union or other professional body, criminal record or health information.
Sensitive information will be used by us only:
Disclosure of Personal Information
Your Personal Information may be disclosed in a number of circumstances including the following:
Security of Personal Information
Your Personal Information is stored in a manner that reasonably protects it from misuse and loss and from unauthorized access, modification or disclosure.
Client records are stored in Power Diary, an Australian web-based practice management software system. Power Diary's security and privacy measures ensures compliance with the relevant legislative and regulatory requirements in the main markets in which we operate; Australia, New Zealand, UK, Europe, South Africa, USA and Canada. This includes compliance with the GDPR, HIPAA and PIPEDA. Power Diary also complies with the relevant international laws and legislation concerning Data Privacy and Breach Notification Requirements including the circumstances, details, and timing of notifying affected users.
When your Personal Information is no longer needed for the purpose for which it was obtained, we will take reasonable steps to destroy or permanently de-identify your Personal Information.
Access and Correction
You may access the Personal Information we hold about you and to update and/or correct it, subject to certain exceptions. If you wish to access your Personal Information, please contact us in writing. Sarah Browne Hypnotherapy will not charge a fee for your access request. In order to protect your Personal Information we may require identification from you before releasing the requested information.
Maintaining the Quality of your Personal Information
It is important to us that your Personal Information is up to date. We will take reasonable steps to make sure that your Personal Information is accurate, complete and up-to-date. If you find that the information we have is not up to date or is inaccurate, please advise us as soon as practicable so we can update our records and ensure we can continue to provide quality services to you.
The Power Diary Telehealth system is fully compliant for health care use, including HIPAA and GDPR compliance. For further information please refer to the Power Diary Telehealth Security Privacy and Compliance page on their website.
This Policy may change from time to time and is available on our website.