Privacy Policy

Effective from: 29/06/2022

This privacy policy outlines how your personal information is collected, stored, used, and protected in accordance with the Privacy Act 1988 (Cth) and the Australian Privacy Principles.

1. What information is collected?
We (Mindflow) may collect personal and health information such as your name, contact details, date of birth, Medicare/NDIS details, referral information, and relevant psychological or medical history.

2. How is this information used?
Your information is used to:

• Provide psychological services to you
• Communicate with you and your referring GP or other health professionals (with your consent)
• Comply with legal and regulatory requirements (e.g. Medicare claims, case notes)

3. Storage and security
All information is stored securely, either electronically (password-protected practice management software) or in locked physical storage. Only authorised personnel can access your records.

4. Confidentiality and disclosure
Your information remains confidential and will only be shared with your consent, unless:

• There is a serious risk of harm to yourself or others
• It is required by law (e.g. a court subpoena)
• Mandatory reporting obligations apply

5. Access and correction
You may request access to your information or ask for corrections. Please make this request in writing.

6. Complaints
If you have concerns about how your information has been handled, you are encouraged to raise them directly. If unresolved, complaints can be made to the Office of the Australian Information Commissioner (OAIC): www.oaic.gov.au