Enlighten Nutrition Privacy Statement
- Personal information about you is collected only when knowingly and voluntarily submitted and when reasonably required by us to perform one or more of our functions or activities.
- Personal Information is collected by us or on our behalf via the following means: direct requests for information made by us to you either verbally or in writing, online and hard copy application or order forms completed by you or on your behalf.
- We may also collect personal information indirectly through third parties such as credit reporting agencies, your authorised representative, your bank or financial adviser, or via publicly available means or through websites (such as ASIC, ABN Lookup or social media sites) who disclose to their users that the user’s personal information is provided to businesses such as ours.
- It is our intention that this Policy will protect your personal information from being dealt with in any way that is inconsistent with applicable privacy laws in Australia including the Australian Privacy Principles (APPs). The type of personal information that we may collect and hold includes:
- your name, address, contact details such as telephone numbers and email address,
- your gender and date of birth;
- Medical History that pertains to the ordinary course of your medical nutrition therapy assessment;
- Private health cover details;
- Any other information that relates to our ability to provide our service to you in accordance with the APPPs, and
- other information that is necessary in the ordinary course of our business.
- Where it is reasonable and practical to do so we will only collect personal information about you from you. You have no obligation to provide any information requested by us however if you choose to withhold personal information from us it may prevent us from being able to provide you with the goods and/or services that you have requested.
- We will take reasonable steps to ensure that your personal information is accurate, complete and up-to-date as soon as practicable after receiving your notification of any error or inaccuracy.
Provision of Personal Information about another person
Use of Information
- Personal information collected from you is used for the following purposes:
- Medical records
- To provide tailored service and advice
- To create and update a medical record and profile
- To liaise with other service providers on your behalf
- To manage your account with us
- To liaise with relevant government authorities on your behalf where we are authorised to do so or where such communications are reasonably expected in the circumstances
- To liaise with others in our company to manage or administer aspects of the services that we provide to you
- To communicate with you regarding other relevant products and services we provide
- To notify you of seminars and other events and provide you with other marketing material
- To conduct surveys
- For the purpose of seeking feedback; and
- For any other business-related purpose.
- Personal information is held in paper archives, by electronic or computer database, and remotely in cloud-based storage systems.
Enlighten Nutrition Pty Ltd use password protected systems to protect privacy for their users. Enlighten Nutrition Pty Ltd use archival retrieval systems that are password protected to ensure security of our products and data obtained from our users. Enlighten Nutrition Pty Ltd ensure all reasonable steps are taken to protect the information and the security of that information from any breach within our control. Enlighten Nutrition is not responsible in anyway whatsoever for any breach, cyber-security breach, or third party ‘hack’ where security measures have been put in place and the breach is determined to be outside the bounds of those measures.
- We will not disclose your personal information unless you have consented to that disclosure. Your consent may be express or implied. Such disclosure may include to your financial advisers, bankers and their service providers, our merchant and payment organisations.
- We may also disclose your personal information where it is required or authorised by or under an Australian law or a court/tribunal order or where a permitted general situation exists under the APPs. Where disclosure is necessary for an enforcement related activity of an enforcement agency, we will provide written notification of that disclosure as is required by the APPs.
- We may engage third parties to provide you with goods or services on our behalf. In that circumstance, we may disclose your personal information to those third parties in order to meet your request for goods or services.
- As part of provision of the services to you we may store your personal information using online software. The personal information that you provide to us may be transferred to the servers of our software providers as a function of transmission across the internet. By providing your personal information you are consenting to that personal information being transferred to and stored on the servers as set out in this Policy. However, as the third parties who host our servers do not control, and are not permitted to access or use your personal information (except for the limited purpose of storing the information), we do not “disclose” personal information to those server hosts, whether or not they are located overseas.
- Notwithstanding the above, for the purpose of transparency we advise that the servers of our accounting and file storage software providers are located in both Australia and overseas, however this may change without prior notice to you. Your personal information may be routed through, and stored on, those servers.
- We will use reasonable endeavours to ensure that our server hosts do not have access to, and use the necessary level of protection to safeguard, your personal information and otherwise comply with the APPs. If you do not want your personal information to be transferred to a server located in the USA or to any other international locations, you should not provide us with your personal information or use our services. We will use cloud-based storage files, platforms, and associated products to store information.
- We strive to ensure the security, integrity and privacy of personal information collected and held by us, and we review and update our security measures in light of current technologies. Unfortunately, we cannot guarantee that our data storage measures are totally secure.
- However, we will endeavour to take all reasonable steps to protect the personal information we collect from you from misuse, interference, loss and unauthorised access, modification or disclosure.
- Where the personal information is no longer required for the purpose for which it was collected (or a permitted secondary purpose) we will take reasonable steps to destroy or de-identify the information.
Using Government Identifiers
- In certain circumstances we may be required to collect government identifiers from or relating to you, such as your tax file number, Medicare number or pension or other benefit number. We will not use or disclose this information unless you have provided your consent to the disclosure or otherwise where we are required or authorised to do so by law.
- If information is gathered by our website/portal or online database, our web servers may gather your IP address to assist with the diagnosis of problems or support issues with our services. This information is gathered in aggregate only and cannot be traced to an individual user.
Cookies and Applets
Access to Information
- We will endeavour to take all reasonable steps to keep information about you accurate and up to date. If, at any time, you discover that information held about you is incorrect, you may contact us to have the information corrected. Further you may request access to any of your personal information we hold except if the provision of the information is contrary to any applicable privacy law.
- In addition, our employees and the contractors who provide services related to our information systems are obliged to respect the confidentiality of any personal information held by us.
- If you wish to make a complaint regarding any aspect of the collection, access to, use or storage of personal information by us, please make your complaint in writing to the address below. We will consider your complaint promptly and contact you to seek to resolve the matter. If we have not responded to you within a reasonable time, you are entitled under privacy legislation to make a complaint to the Office of the Australian Information Commissioner.
- Please direct all requests for access to or correction of personal information or all complaints to: firstname.lastname@example.org
- Unless you specify an expiry date, we hold the information at a time of our own discretion but no less than 7 years as required by law.
- For more information about privacy issues in Australia and protecting your privacy or to make a complaint about our handling of your personal information, visit the Office of the Australian Information Commissioner’s web site – http://www.oaic.gov.au/