Village Family Medical Centre Pty Ltd – Privacy Policy
Current as of: May 2026
Introduction
This privacy policy explains how Village Family Medical Centre Pty Ltd (referred to below as "the practice," "we," or "us") collects, uses, and protects your personal information (including health information) and the circumstances in which we may share it with third parties.
Why and When Your Consent is Necessary
When you register as a patient of our practice, you provide consent for our GPs and practice staff to access and use your personal information so they can provide you with the best possible healthcare. Only staff who require access to perform their duties will be permitted to see your information. We will seek additional, explicit consent if we intend to use your information for any purpose outside of direct healthcare provision or related business activities.
Why Do We Collect, Use, Hold, and Share Your Personal Information?
Our primary purpose for collecting and managing your information is to provide high-quality healthcare. We also use it for directly related business activities, including:
Financial claims, billing, and payments. Practice audits, accreditation, and quality assurance. Business processes such as staff training and service improvements.
What Personal Information Do We Collect?
The information we collect includes:
Demographics: Name, date of birth, addresses, and contact details. Clinical Records: Medical history, medications, allergies, immunisations, social/family history, and risk factors. Identifiers: Medicare number, Healthcare Identifiers (HI Service), and health fund details.
Dealing With Us Anonymously
You have the right to deal with us anonymously or under a pseudonym unless it is impracticable for us to do so (e.g., for Medicare claiming or clinical safety) or where we are legally required to identify you.
How Do We Collect Your Personal Information?
We collect information in several ways:
Directly: During registration and through your consultations. Digitally: Via Electronic Transfer of Prescriptions (eTP), My Health Record (MHR), and secure messaging from other providers. Communication: Through our website, email, SMS, telephone, and online booking systems. Generative AI Transcription: We may utilize secure, clinical-grade Generative Artificial Intelligence (AI) tools to assist in documenting your visit and recording medical notes. These tools process data in accordance with Australian privacy standards to ensure accuracy while maintaining confidentiality. Third Parties: We may collect information from guardians, other healthcare providers (specialists, hospitals, pathology), or government agencies (Medicare, DVA).
Sharing Your Personal Information
We share your information only when necessary for your care or legal obligations:
Healthcare Coordination: With specialists, pharmacists, and allied health professionals involved in your care. Business Operations: With third parties such as IT providers or accreditation agencies (who are contractually bound to comply with the APPs). Legal Requirements: When required by law (e.g., mandatory notification of diseases) or to prevent a serious threat to life, health, or public safety. Research: We may use de-identified data (where you cannot be identified) for research or population health outcomes. You may opt out of this by notifying reception.
Note: We do not share your personal information with overseas recipients unless required by law or with your express consent. We do not use your data for third-party marketing.
How We Store and Protect Your Information
We take significant technical and organizational steps to secure your data:
Encryption: All electronic records are held in encrypted databases. Storage: Data is stored in secure, Australian-based cloud servers. Access Control: We use strong password policies and Multi-Factor Authentication (MFA) wherever possible. Staff Obligations: All staff sign strict confidentiality agreements and undergo privacy training. Physical Security: Any hard-copy records are kept in lockable, secure cabinets.
Accessing and Correcting Your Information
You have the right to access and correct the personal information we hold.
Access:Requests for medical records must be in writing with proof of identity. We will respond within 30 days. A fee may apply for administrative costs.
Correction: If you believe your information is inaccurate, please contact our Business Operations Manager at hello@village-medical.com.au.
Privacy Complaints
If you have concerns about how your privacy has been handled, please contact us in writing:
Business Operations Manager The Village Medical Practice 35 Wright Road, Harrisdale WA 6112 Email:hello@village-medical.com.au
We will investigate and respond to all complaints within 30 days. If you are unsatisfied with our response, you may contact the Office of the Australian Information Commissioner (OAIC) at www.oaic.gov.au or 1300 363 992.
Website and Digital Privacy
Our website (https://www.village-medical.com.au/) may contain links to external sites; we are not responsible for their privacy practices. We use aggregated, de-identified website traffic data (such as page views) to improve our digital services. We do not automatically collect your email address unless you provide it via a form.
Policy Review Statement
We reserve the right to update this policy to reflect changes in law or technology. Updates will be posted promptly on our website and available in-clinic.
