At Healing Leaves Clinic Pty Ltd (“Healing Leaves Clinic®,” “we,” “our,” or “us”), protecting your personal and health information is a top priority. This Privacy Policy explains how we collect, use, store, and disclose your information in compliance with the Australian Privacy Act 1988, Australian Privacy Principles (APPs), and the U.S. Health Insurance Portability and Accountability Act (HIPAA).
By using our website or services, you consent to the practices described in this policy.
1. Protected Health Information (PHI) and Sensitive Information
Health information is considered sensitive and requires additional safeguards under both HIPAA and the Australian Privacy Act. This includes:
- Medical history and clinical records
- Billing and payment information
- Treatment details that can identify you
We handle all sensitive information with strict confidentiality.
2. Collection, Use, and Disclosure of Information
We may collect personal and health information for the following purposes:
Treatment: To coordinate your care and communicate with healthcare professionals involved in your treatment.
Payment: To facilitate billing and payment for services.
Healthcare Operations: To manage, improve, and administer our services, comply with regulatory obligations, and conduct audits or quality improvement activities.
We only collect sensitive information with your consent, unless required or permitted by law.
3. Data Security and Medical Director
We use Medical Director, a secure health information management platform, to store and manage your data. Medical Director complies with Australian privacy standards.
We implement administrative, technical, and physical safeguards to protect your information from unauthorized access, modification, or disclosure.
Administrative safeguards: Policies and procedures for handling sensitive information.
Technical safeguards: Encryption, secure servers, and access controls.
Physical safeguards: Restricted access to both digital and physical records.
4. Your Rights
Under HIPAA and the Australian Privacy Act, you have the following rights:
- Right to Access: Request access to your health records.
- Right to Correct Information: Request correction of inaccurate or incomplete information.
- Right to Restrict Use/Disclosure: Request limitations on how your information is used or shared.
- Right to Confidential Communications: Request contact through specific methods or locations.
To exercise any of these rights, contact us using the details in Section 8.
5. Breach Notification
If a data breach occurs that affects your personal or health information, Healing Leaves Clinic® will:
- Notify affected individuals promptly, in compliance with HIPAA and the Australian Privacy Act.
- Provide details of the breach, information affected, and steps to mitigate risks.
6. Use of Information for Research or Marketing
We may use de-identified or aggregated information for research, education, or service improvement purposes.
We do not disclose personal or health information for marketing purposes without your explicit consent.
7. Third-Party Services
We may share information with third-party service providers that assist in operating our website, payment systems, or healthcare services.
These providers are bound by confidentiality and data protection obligations.
8. Retention of Information
We retain personal and health information only as long as necessary to provide services, comply with legal obligations, or resolve disputes.
9. Changes to This Privacy Policy
Healing Leaves Clinic® may update this Privacy Policy at any time. Significant changes will be posted on our website. Continued use of our services after updates constitutes acceptance of the revised policy.
10. Contact Information
For questions regarding this Privacy Policy, your rights, or how we handle your information:
Healing Leaves Clinic Pty Ltd
Address: 18/324 Queen Street, Brisbane City, QLD 4000
Phone: 07 3813 4932
Email: info@hlclinics.com.au
Website: www.healingleaves.com.au