This policy is designed to ensure that:

• Your personal and health information is handled responsibly.

• You understand your rights concerning your personal and health information.

• We comply with applicable privacy laws and industry standards as set out in the APP standards.

We collect the following types of personal and health information:

• Personal Information: Name, address, contact details, date of birth, and Medicare number.

• Health Information: Medical history, treatment details, prescriptions, and other health-related information necessary for your care.

• Other Information: Any other information that is directly relevant to your medical treatment or required by law.

We collect personal and health information in the following ways:

• A form (either physical or online) that is completed and submitted to us;

• A telephone call, email or in-person inquiry or discussion about products and/or services that we provide;

• If applicable, from your guardian or responsible person;

• From other healthcare providers;

• A referral form when you are referred to Geelong Specialist Group;

• When an individual contacts us over the telephone,

• Mail correspondence, emails and other electronic means (including by accessing our website.

• Accounting/Medicare/Health Insurance/My Health Record procedures

• From relevant medical tests or diagnostic procedures.

We may use your personal and health information for the following purposes:

• To provide medical care and treatment.

• To communicate with you regarding appointments, treatment plans, or follow-up care.

• For administrative purposes, including billing and claiming insurance.

• To improve the quality of care and services offered by our practice.

• For compliance with legal or regulatory requirements.

We may share your personal and health information in the following circumstances:

• With other healthcare providers involved in your care, with your consent.

• To third-party service providers who assist in the operation of our practice (e.g., IT services, billing providers) under confidentiality agreements.

• When required by law or regulation, including for reporting mandatory notifications or compliance with a subpoena.

We take reasonable steps to protect your personal and health information from misuse, loss, or unauthorised access. These steps include:

• Secure storage of physical and electronic records.

• Password protection for electronic systems and databases.

• Employee training on confidentiality and information security.

• Regular audits and security reviews to ensure compliance with privacy regulations.

If you wish to communicate to us by email, either with our Staff or Doctors, please note that emails are not encrypted and if the email is intercepted in transit, it can be read by unauthorised persons. You are not obliged to email us as a communication form with us, and if you choose to email us, you accept this risk.

Under the Privacy Act 1988, you have the right to:

• Request access to your personal and health information held by us.

• Request correction of any inaccurate or outdated information. To make a request, please contact our practice manager via email: info@geelongspecialistgroup.com.au.

We retain your personal and health information for as long as necessary for the purpose of providing healthcare, complying with legal or regulatory requirements, or as required by professional or industry standards.

If you believe that your privacy rights have been violated or you have concerns about how your information is handled, please contact us at info@geelongspecialistgroup.com.au. We will review your concerns and take appropriate action. If you are not satisfied with our response, you may contact the Office of the Australian Information Commissioner (OAIC).

This privacy policy is reviewed periodically and updated as necessary to ensure ongoing compliance with privacy laws and RACGP standards. Any changes to this policy will be communicated to you via our practice website or direct contact.