Protecting your privacy – Our Privacy Assurance to you
Part of Harmony In Movement’s commitment to providing a high level of care for clients includes ensuring a high level of protection for any personal information we have on our records. Harmony In Movement views the privacy of clients as an important part of our duty of care and seeks to comply with all elements of the Australian Privacy Principles as well as our existing obligations of confidentiality including AHPRA and APS codes of ethics and regulatory guidelines.
When you attend an appointment at Harmony In Movement or register for a workshop or exercise group, you will be asked to sign a consent form which includes notices about privacy and requests your consent. The privacy statements in the various forms specify how any information about you may be used and disclosed.
The information handling processes outlined in this policy also relate to any personal information collected online via this website.
Harmony In Movement takes seriously the trust you place in us and at all times we will make every effort to ensure that your personal information is secure, protected from interference, misuse, loss and unauthorised access, modification and disclosure.
Collection of Your Personal Information
Personal and Sensitive Information
Personal Information refers to information or an opinion, whether true or not, and whether recorded in a material form or not, about an individual whose identity is apparent, or can reasonably be ascertained, from the information or opinion.
Sensitive Information is a subset of personal information and includes your health information as well as information pertaining to racial or ethnic origin, political opinions or membership of a political organisation, religious belief or affiliations, membership of a professional or trade association, sexual preferences or a criminal record. Sensitive information attracts additional privacy protections compared with other types of personal information.
On your first visit for an appointment with Harmony In Movement, you will be asked to sign a Client Consent form and to provide certain personal information including:
Your name, address, phone number and email contact details;
Your gender, date of birth and marital status;
Contact details for your of next of kin and your doctor;
Information about your health and any medication you may be taking.
You will also be asked to consent to specific treatments and whether you are agreeable to your personal information being shared with other practitioners or medical professionals where this may enhance your treatment.
At the end of your treatment your practitioner will make a few notes about any symptoms you may have exhibited, and the treatment given. These notes will be used by your practitioner for the ongoing support of your condition should you have a subsequent visit. Should you have a further session with a different practitioner they will make separate notes during your consultation. Practitioners will not share your consultation notes or personal information without your written consent.
Children and other persons who are not able to give informed consent may come for a session with the consent of a parent or guardian. In such cases, personal information will be collected and used as described above.
When you first attend a Harmony In Movement workshop or course, you will be asked to sign a consent form and provide your personal information similar to that outlined above.
We will try to collect your personal information directly from you. However, there may be instances where we will need to collect your information from other persons or entities. Whenever possible we will request this other person to have your signed consent or email giving your permission for them to provide us with your personal information. Exceptions may be if you suddenly take ill and are incapable of providing certain information which may be important for your treatment, such as if you have had a recent operation, illness or an implant and what medication you are taking.
If you have provided us with information about another person, then you will need to tell that person that you have done so, that they have a right to access their information and that they can refer to this policy for information on how we will handle their personal information.
If you have consented to your personal information being shared for research purposes, your information will be de-identified by a properly authorised member of staff before being made available to the research team unless you have consented to your personal information remaining identified.
When you access our website, anonymous technical information may be collected about your activities on the website. This may include information such as the type of browser used to access the website and the pages visited. This information is used by us to make decisions about maintaining and improving our websites and online services. This information remains anonymous and is not linked in any way to personal identification details.
Harmony In Movement does not store financial information such as credit card numbers.
What is a cookie?
A cookie, also known as browser cookies or tracking cookies, are small, often encrypted text files, located in browser directories that are downloaded to the user’s computer / smartphone / tablet when accessing certain web pages, to store and retrieve information about the navigation that is carried out from said equipment.
They are used by web developers to help users navigate their websites efficiently and perform certain functions. Due to their core role of enhancing/enabling usability or site processes, disabling cookies may prevent users from using certain websites.
Website servers set cookies to help authenticate the user if the user logs in to a secure area of the website. Login information is stored in a cookie so the user can enter and leave the website without having to re-enter the same authentication information over and over
Harmony In Movement uses both Essential and Functional Cookies
Essential cookies are used to store the settings selected by a user on a given site and are essential to a website's functionality and cannot be disabled by users.
Functionality cookies allow websites to remember the user's site preferences and choices they make on the site including username, region, and language. These cookies can remember the users preferences to boost the user experience on a website.
Harmony In Movement website uses the following cookies:
How can you disable cookies?
To change the cookie settings, you can access:
Microsoft Internet Explorer: https://support.microsoft.com/es-es/help/17442/windows-internet-explorer-delete-manage-cookies#ie=ie-11
Google Chrome: https://support.google.com/chrome/answer/95647?hl=es
How we store your Personal Information
We will take all reasonable steps to ensure that your personal information is stored securely and is protected from misuse and loss from unauthorised access, modification or disclosure. This includes a range of systems and communications security measures, as well as the secure storage of hard copy documents. In addition, access to your personal information will be restricted to people properly authorised to have access.
When you complete a consent form either at the clinic, online or at an event, the information on the form is entered into our database and the original document is then filed in secure storage. Only your practitioner and the staff who have properly authorised access to the database may see your personal information unless you have consented to your practitioner sharing your information with another professional such as a GP or researcher.
When you enter your details on-line, they may only be viewed by the staff who have authorised access to the database.
We will keep your personal information for as long as it is required to provide you with the services you requested from us and to comply with legal requirements.
If we no longer require your personal information for any purpose, including legal purposes, we will take reasonable steps to securely destroy or de-identify your personal information.
It is your responsibility to advise us should either your health situation or your personal details change so that your record is kept up to date (see ‘Correcting your personal information).
How we use your Personal Information
Personal information is used to:
contact you about your appointment or any other matter in relation to the service provided to you;
contact your next of kin or GP in an emergency;
better understand your health history and thus ensure your treatment is of the highest quality;
discuss your case with other practitioners and / or medical professionals if you have consented to this and only if it is felt necessary to do so in support of your case and in your best interest;
research purposes if you have consented to this, in which case your personal information will be ‘de-identified’ that is anonymous, unless you advise us otherwise;
allow you to purchase products and services;
answer your enquires and resolve complaints;
provide you with information about any product you may have purchased or registered for, such as a workshop or other event.
Credit card information is used only for payment processing and fraud prevention. This information is not used for other purposes and not retained by us.
Anonymous data may be aggregated for reporting client statistics for the clinic and to improve our customer support. If you complete a questionnaire, you may do this anonymously and you will have an option to provide your name if you have questions or are seeking further information.
When you register on-line for a newsletter, event or other product, you consent to us using your personal information to send you further information relevant to that product (for an indefinite period), unless you have contacted us to withdraw your consent.
With whom we share your Personal Information
Harmony In Movement takes seriously the trust you place in us and on no account will we sell, rent or lease your personal information to others. We will not share your personal information with any third party without your permission unless required by law enforcement action or subpoena. For example, we may be required to provide your personal information to the appointed referring GP of your Mental Health Care Plan, case managers of insurance companies managing compensation cases or third-party case in the treatment of injury or illness.
Personal information may be disclosed to anyone to whom you have given written and signed consent to have access to this information (e.g., a solicitor, accountant or a person who has authority to act as your attorney). This could also include referees, any financial institution nominated by you (for example in a direct debit) or anyone else you request.
Personal data given to a Harmony In Movement clinic may be transferred across state borders for the purposes of data consolidation, storage and simplified management.
Access to your Personal Information
If you have completed a consent form at the clinic, online, or at an event, you can request access to your personal information at any time by contacting us to make your request (contact details are listed on the first page). If you believe that any information is incorrect or outdated, you may ask for a correction to be made. A request for access will be processed within a reasonable time, usually less than a week for a straightforward request. More time may be needed, depending on the nature of the request. There is no fee for requesting access to your information.
In a very few cases we may be unable to give you access to certain information for example where:
we no longer hold or use the information;
providing access would have an unreasonable impact on the privacy of others;
the request is vexatious;
providing access would be unlawful;
the information relates to existing or anticipated legal proceedings;
providing access would prejudice or be likely to prejudice the prevention, detection, investigation and prosecution of unlawful activity;
disclosure would pose a threat to the life or health of any individual.
If we refuse your request, we will tell you the reason why. If we are not required to provide you with access to the information requested, we will consider, if reasonable, whether the use of a mutually agreed intermediary would allow sufficient access to meet your needs and ours.
If you have access to your personal information on-line, such as when you register and book for an event, then you may access your information using your username and password.
Correcting your Personal Information
Harmony In Movement strives to keep your personal information accurate, however, it is your responsibility to notify us when your details change. If you believe any information we hold about you is inaccurate, incomplete or out-of-date, you should contact us and we will provide you with a copy of your information to view and following your authorisation we will change your information. Your personal information can be provided either via an email with the document being attached as a PDF, or the document can be printed and mailed to you.
To protect your privacy and security, we will take reasonable steps to verify your identity, before granting access to your data. In some cases we may ask you to put your request in writing. Where you have registered for an event on-line you may access and amend your details using your username and password.
The most effective way to view and change your personal information submitted on a consent form at the clinic, online or at an event, is to request a new consent form from the Harmony In Movement reception staff either at the clinic or via online contact form.
Making a Complaint
You can contact us at any time if you have any questions or concerns about this document or about how your personal information has been handled. See contact details on the front page of this policy.
We value your comments and opinions. We will answer any questions you may have, correct any error on our part or resolve any complaint that you may have about our information handling practices.
Once you have contacted us in relation to your concerns, if you are not satisfied with our response, or if you do not feel your complaint has been resolved, you are able to seek advice from the Office of the Australian Information Commissioner by calling 1300 363 992.
If you want to make a complaint in NSW about a health-related service you can contact the NSW Health Care Complaints Commission by calling the toll free number 1800 043 159 or emailing firstname.lastname@example.org
Online data collection and use
The following discloses Harmony In Movement’s information gathering and dissemination practices.
Our registration form requires visitors to give us contact information, like their name and email address, and unique identifiers. We use contact information from the registration form to send visitors information about our services and products. The contact information is also used to contact visitors when necessary if they have subscribed to a mail list. Visitors may opt-out of receiving future mailings by choosing to un-subscribe by sending us an email stating so. Unique identifiers are collected to verify the user's identity and for use in our record system.
We are not responsible for the privacy practices or the content of third party sites that choose to place links to our site on their website.
Security of your Personal Information
Harmony In Movement will take all reasonable steps to ensure that your personal information is stored securely and is protected from misuse and loss and from unauthorised access, modification or disclosure. We limit access to personal information to properly authorised staff within the organisation and ensure that those who do have access respect the privacy of personal information that they are handling. Authorised access to personal and sensitive information is conducted within a ‘need to know’ principle. Personal/sensitive information is only accessed by those staff members who need it to carry out their duties.
Security also includes a range of systems and communication security measures, as well as the secure storage of hard copy documents. These include:
an encrypted client database for collection of client information;
password secured digital client notes;
individual database user logins for effective auditing of data amendments;
a password protected server;
a closed office WiFi network strictly accessible to staff only;
daily off site back ups; and
password locked screens on all office computers.
In line with our policy of ensuring a high level of care and protection for any personal information we may hold about you; Harmony In Movement has an ongoing commitment to periodically brief staff on their obligations and responsibilities with digital security and to ensure they are made aware of the best practices for use of common technologies like email and video conferencing. All client consultations at the clinic are held in soundproof rooms with double doors for maximum privacy. All client telephone or video consultations are done using internet platforms that are compliant with the Australian standards for online security and encryption.
We keep your personal information for as long as it is required to provide you with the products and services you requested from us and to comply with legal requirements. If we no longer require your personal information for any purpose, including legal purposes, we will take reasonable steps to securely destroy or de-identify your personal information.
Last updated 19th March 2022