top of page

PRIVACY POLICY

Last Updated: June 2026

 

Foundation Allied Health is committed to protecting the privacy and confidentiality of personal and health information. We comply with the Privacy Act 1988 (Cth), the Australian Privacy Principles (APPs), and applicable health privacy legislation.

This Privacy Policy explains how we collect, use, store, disclose and manage your personal information.

 

1. Who We Are

 

Foundation Allied Health

Address: 114-116 Somers St, Lawson NSW 2783

Phone: 0466 344 866

Email: hello@foundationalliedhealth.com

Website: https://www.foundationalliedhealth.com

If you have any questions regarding this Privacy Policy or your personal information, please contact us using the details above.

 

2. What Personal Information We Collect

 

We may collect personal and sensitive information including:

  • Name

  • Date of birth

  • Residential address

  • Email address

  • Telephone number

  • Emergency contact details

  • Medicare details

  • Department of Veterans’ Affairs (DVA) details

  • National Disability Insurance Scheme (NDIS) details

  • Private health insurance details

  • Referring doctor and specialist information

  • Health history and medical information

  • Assessment results and clinical notes

  • Appointment and attendance records

  • Payment and billing information

Health information is considered sensitive information under Australian privacy legislation.

 

3. How We Collect Personal Information

 

We collect personal information directly from you through:

  • New client registration forms

  • Online enquiry forms

  • Phone calls

  • Emails

  • In-person consultations

  • Assessments and treatment sessions

  • Website enquiries

 

We may also receive information from:

  • General practitioners

  • Specialists

  • Allied health providers

  • Hospitals

  • NDIS support coordinators

  • DVA representatives

  • Family members or carers (with consent)

  • Other organisations involved in your care

 

4. Why We Collect Personal Information

 

We collect personal information to:

  • Provide exercise physiology and allied health services

  • Assess your health and functional needs

  • Develop treatment plans and exercise programs

  • Monitor progress and clinical outcomes

  • Communicate with you regarding appointments and services

  • Process payments and invoices

  • Claim Medicare, DVA, NDIS, private health insurance and other funding sources

  • Prepare reports and correspondence

  • Meet legal, regulatory and professional obligations

  • Manage and improve our services

If we are unable to collect necessary information, we may not be able to provide services safely or effectively.

 

5. How We Use and Disclose Personal Information

 

Your personal information may be used or disclosed for purposes directly related to your healthcare and the operation of our services.

This may include disclosure to:

  • Referring medical practitioners

  • Specialists

  • Allied health providers involved in your care

  • Hospitals and healthcare facilities

  • Medicare

  • Department of Veterans’ Affairs (DVA)

  • National Disability Insurance Agency (NDIA)

  • Private health insurers

  • Workers compensation and CTP insurers

  • Home care package providers

  • Government agencies where required by law

We will not sell your personal information to third parties.

 

6. Storage and Security of Personal Information

 

Foundation Allied Health takes reasonable steps to protect personal information from misuse, interference, loss, unauthorised access, modification and disclosure.

Client records are stored electronically using secure practice management and cloud-based systems including Splose, Microsoft Outlook, Gmail and Microsoft OneDrive.

Security measures include:

  • Password-protected systems

  • Multi-factor authentication

  • Device passcodes

  • Biometric authentication where available

  • Restricted staff access to information

  • Secure cloud storage

  • Regular software and security updates

Only authorised personnel are permitted access to personal information required for their role.

 

7. Overseas Disclosure

 

Foundation Allied Health uses cloud-based service providers including Splose, Microsoft and Google.

These providers may store, process or back up information on servers located in Australia and other countries.

As a result, personal information may be transferred, stored or processed outside Australia. We take reasonable steps to ensure service providers maintain appropriate privacy and security protections.

By using our services, you acknowledge that information may be stored and processed through these systems as necessary for the delivery of healthcare and administrative services.

 

8. Accessing and Correcting Your Information

 

You may request access to personal information we hold about you.

You may also request correction of information that is inaccurate, incomplete or out of date.

Requests should be made in writing using the contact details provided in this policy.

We may require verification of identity before providing access to information.

In limited circumstances, access may be restricted where permitted by law.

 

9. Retention and Destruction of Information

 

Foundation Allied Health retains health records in accordance with applicable legal and professional record-keeping requirements.

When personal information is no longer required and retention obligations have been met, information will be securely destroyed or permanently de-identified.

Electronic records will be securely deleted where appropriate and physical records will be securely destroyed.

 

10. Website Information

 

Our website may collect limited information through cookies, analytics tools and website forms.

This information may include:

  • IP address

  • Browser type

  • Device information

  • Website usage information

  • Pages visited

This information helps us improve website functionality and user experience.

You may disable cookies through your browser settings, although some website functions may be affected.

 

11. Complaints

 

If you believe your privacy has been breached or your information has been mishandled, please contact Foundation Allied Health using the contact details provided above.

We will investigate complaints promptly and respond within a reasonable timeframe.

If you are not satisfied with our response, you may contact:

Office of the Australian Information Commissioner (OAIC)

Website: www.oaic.gov.au

Phone: 1300 363 992

 

12. Changes to This Privacy Policy

 

Foundation Allied Health may update this Privacy Policy from time to time.

Any updates will be published on our website and the latest version will always be available online.

Continued use of our services following any updates constitutes acceptance of the revised Privacy Policy.

bottom of page