Privacy Policy

Last updated:7 October, 2025

Information We Collect

We collect personal and health information you voluntarily provide, including:

• Identifying information (e.g. your name and appointment details)
• Symptoms and health concerns
• Medical history details
• Current medications and allergies
• Demographic information (age, gender)

How We Use Your Information

We collect and process your health information with your consent and for the primary purpose of providing healthcare services, including supporting your healthcare provider in delivering safe and effective care.

Specifically, your information is used to:

• Assist healthcare professionals in preparing for your consultation and delivering better care
• Notify your healthcare provider when your pre-consultation information is ready for review
• Improve the quality of your medical care
• Maintain medical records as required by law
• Comply with healthcare regulations

What We Do Not Do

We do not sell, rent, or share your personal or health information with any third parties for advertising, analytics, or other secondary commercial purposes.

Use of De-Identified Data

We may also use de-identified and aggregated health information — information that does not identify you and cannot reasonably be used to do so — to improve and develop our services. This may include training and refining artificial intelligence models, enhancing data analysis capabilities, or generating insights to support the delivery of better healthcare in the future. These insights are used at a population level and cannot be traced back to any individual patient.

Any such use will never involve identifiable personal information, and we take steps to ensure that data is de-identified in accordance with the Office of the Australian Information Commissioner’s guidelines before it is used for these purposes. Once de-identified, this information is no longer considered personal information under Australian privacy law.

Information Sharing

Your health information is shared only with:

• Your healthcare provider - to assist in your medical care
• Authorized medical staff - involved in your treatment
• Legal authorities - when required by Australian law

We may also share minimal identifying information (such as your name and appointment time) with your healthcare provider via secure email or system notifications for the purpose of coordinating your care. Full clinical details are accessible only after secure login.

We never share your information for marketing purposes.

Use of AI-Powered Services

Some features of our service, including chat-based or automated pre-consultation interviews, use artificial intelligence (AI) technologies powered by GPT-5 through Microsoft Azure OpenAI Service. These AI services help structure and summarise the information you provide to support your healthcare provider in preparing for your appointment.

All core AI processing and data handling occurs on secure Microsoft Azure infrastructure located within Australia. Your information is never used to train AI models, and Microsoft does not retain or use your data for its own purposes.

Overseas Disclosure of Information

All core data processing — including AI-powered chat interviews — takes place on secure servers located in Australia. Some optional features, such as voice-based interviews or telephony services, are not required to use our service and may involve processing your personal and health information on secure servers located outside Australia (for example, in the United States or the European Union).

If these features are used, we will inform you and ask for your explicit consent before any overseas processing occurs. By providing that consent (for example, by agreeing at the start of a voice interview), you acknowledge and agree that your information may be transferred and processed overseas for the purpose of delivering that specific service.

We take reasonable steps to ensure that any overseas service providers handle your information in a manner consistent with the Australian Privacy Principles and provide protections equivalent to those required under Australian law.

Data Security

We protect your information using:

• Industry-standard encryption and secure data transmission
• Access controls and authentication for all sensitive data
• Secure email notifications that contain only the minimum necessary identifying information
• Regular security audits and compliance reviews
• All core data storage and processing occurs within Australian data centres

Your Rights

Under Australian privacy law, you have the right to:

• Access your personal health information
• Request corrections to inaccurate information
• Request deletion of your information (subject to medical record requirements)
• Understand how your information is used

Data Retention

Your health information is retained:

• As required by Australian healthcare regulations
• For the minimum period necessary for medical care
• In accordance with your healthcare provider's record-keeping policies

Contact Information

For privacy-related questions or to exercise your rights, contact your healthcare provider directly.

To make a privacy complaint, you may contact the Office of the Australian Information Commissioner at www.oaic.gov.au

Changes to This Policy

We may update this privacy policy to reflect changes in our practices or applicable laws. We will notify you of any significant changes.