Privacy Policy

Grace Care Collective is committed to protecting your privacy and ensuring that your personal and sensitive information is handled with care, respect, and transparency. We understand that the information you share with us is deeply personal. We take this responsibility seriously and follow all relevant Australian privacy laws and professional standards.

This policy outlines how we collect, use, store, and protect your information in accordance with the Privacy Act 1988 (Cth), the Australian Privacy Principles (APPs), and the expectations of the NDIS Quality and Safeguards Commission.

🌱 1. What Information We Collect

• Name, date of birth, gender, contact details, address
• Medicare or private health details
• NDIS information (plan dates, funding type, goals, reports)
• Emergency contact and next of kin
• Medical history, diagnoses, medications, allergies
• Assessment results, therapy notes, reports, and goals
• Cultural background, language preferences, communication needs

We only collect information that is reasonably necessary to provide safe, effective, and person-centred therapy.

🌿 2. How We Collect Information

We collect information:

• directly from you
• from parents, guardians, or carers
• from support coordinators, educators, or plan managers
• from GPs, paediatricians, psychologists, and other allied health professionals
• through our website, forms, emails, phone calls, and telehealth

You may choose not to provide certain information, but this may impact our ability to deliver appropriate services.

🌱 3. Why We Collect Your Information

We collect information to:

• provide therapy, assessments, and reports
• understand your needs, goals, and preferences
• coordinate care with other professionals (with consent)
• meet NDIS, Medicare, and legal requirements
• maintain accurate clinical records
• communicate with you and your support network
• improve our services and client experience

We will always explain why information is needed and how it will be used.

🌿 4. How Your Information Is Stored

Your information is stored securely using:

• encrypted digital systems
• password-protected devices
• restricted access for authorised staff only
• secure email practices

We do not store unnecessary hard copies. If paper documents are used, they are scanned and securely destroyed.

Information is retained for 7 years after services end, in line with health and NDIS requirements.

🌱 5. Who We May Share Information With

We may share information with:

• your GP, paediatrician, or other treating professionals
• support coordinators or plan managers
• educators or school staff
• the NDIS or government agencies where legally required
• emergency services if there is a serious risk to safety

We will always seek your consent before sharing information unless required by law or immediate safety concerns.

You may withdraw or change your consent at any time.

🌿 6. Telehealth

Telehealth sessions follow the same privacy principles as in-person therapy. However, telehealth may involve additional risks such as internet security limitations. We recommend ensuring:

• a private space
• a stable internet connection
• parental presence for children

🌱 7. Access, Corrections & Withdrawal of Consent

You may request:

• access to your information
• corrections to inaccurate information
• changes to your consent preferences

To request access or changes, contact: admin@gracecarecollective.com

We will respond within a reasonable timeframe.

🌿 8. Privacy Concerns or Complaints

If you have concerns about how your information has been handled, please contact us directly so we can work with you to resolve the issue. Please email Merrin Philip at admin@gracecarecollective.com to resolve the issue. If you are not satisfied with the outcome, you can also submit a complaint to the Australian Health Practitioners Regulation Agency (www.ahpra.gov.au) or the Office of the Australian Information Commissioner (www.oaic.gov.au).