top of page
Image by Aaron Burden

Privacy Policy

Introduction

Good Start Psychology ("we," "us," or "our") is committed to protecting the privacy and confidentiality of our clients’ personal information. This Privacy Policy outlines how we collect, use, disclose, and protect client information in accordance with our AI policy and other relevant policies.

The Privacy Principles Act refers to the Australian Privacy Principles (APPs), which are part of the Privacy Act 1988. These principles govern the handling of personal information by Australian government agencies and some private sector organizations. The APPs set out standards for the collection, use, disclosure, and storage of personal information, as well as individuals' rights to access and correct their information.

Australian Privacy Principles

The APPs include principles such as:

  1. Open and transparent management of personal information: Organizations must manage personal information in an open and transparent way.

  2. Anonymity and pseudonymity: Individuals must have the option of not identifying themselves or using a pseudonym when dealing with organizations.

  3. Collection of solicited personal information: Organizations must only collect personal information that is necessary for their functions or activities.

  4. Dealing with unsolicited personal information: Organizations must handle unsolicited personal information in accordance with the APPs.

  5. Notification of the collection of personal information: Organizations must notify individuals when they collect their personal information.

  6. Use or disclosure of personal information: Organizations must only use or disclose personal information for the purpose for which it was collected, unless an exception applies.

  7. Direct marketing: Organizations must only use personal information for direct marketing purposes in certain circumstances.

  8. Cross-border disclosure of personal information: Organizations must take steps to ensure that personal information disclosed overseas is protected.

  9. Adoption, use, and disclosure of government-related identifiers: Organizations must not adopt, use, or disclose government-related identifiers unless an exception applies.

  10. Quality of personal information: Organizations must take steps to ensure that personal information is accurate, up-to-date, and complete.

  11. Security of personal information: Organizations must take steps to protect personal information from misuse, interference, loss, unauthorized access, modification, or disclosure.

  12. Access to personal information: Individuals have the right to access their personal information held by organizations.

  13. Correction of personal information: Individuals have the right to correct their personal information held by organizations.

These principles are designed to protect individuals' privacy and ensure that their personal information is handled responsibly and ethically.

Documents

  1. Privacy Act 1988: The Privacy Act 1988 is a key piece of Australian legislation that governs the handling of personal information by Australian government agencies and some private sector organizations. It establishes the Australian Privacy Principles (APPs), which set out standards for the collection, use, disclosure, and storage of personal information, as well as individuals' rights to access and correct their information.

  2. National Disability Insurance Scheme Act 2013: This act outlines the legal framework for the National Disability Insurance Scheme (NDIS) and includes provisions related to the privacy and protection of personal information of individuals receiving NDIS services.

  3. NDIS (Code of Conduct) Rules 2018: These rules set standards for the conduct of NDIS providers and workers, including requirements for respecting the privacy and confidentiality of people with disabilities.

  4. NDIS (Quality Indicators) Guidelines 2018: These guidelines provide quality standards for NDIS providers, including requirements for maintaining the privacy and security of client information.

  5. Children and Young People (Safety) Act 2017: This act includes provisions for the protection and safety of children and young people, which is relevant if your services involve clients under the age of 18 years.

  6. Disability Discrimination Act 1992 (Cth): This act prohibits discrimination against individuals with disabilities and includes provisions related to the privacy and protection of their personal information.

  7. APS Code of Ethics 2007: This code outlines ethical standards for psychologists, including requirements for maintaining the confidentiality and privacy of client information.
     

Limits of Information Handling

Information We Collect

We collect participant personal information that is necessary for us to provide our services. This may include, but is not limited to:

  • Name, contact details, and date of birth

  • Health information, including medical history and treatment plans

  • Payment information

  • Any other information provided by the participants to us during your interactions with our services
     

How We Use Participant Information

We use participant personal information to:

  • Provide psychological services and support

  • Develop and review treatment plans

  • Communicate with clients about their care

  • Process payments and manage billing

  • Comply with legal and regulatory requirements

  • Improve our service through feedback and continuous improvement processes
     

Disclosure of Information

  • We may disclose client information to:

  • Healthcare providers involved in their care

  • Third-party service providers who assist us in delivering our services (e.g., IT support, billing services)

  • Regulatory bodies and government agencies as required by law

  • Any other parties with your consent or as otherwise permitted by law
     

AI and Data Privacy

In line with our AI policy, we use AI tools to enhance the quality of client services. These tools may assist in tasks such as note-taking, session planning, and generating content. We ensure that:

  • AI tools are used responsibly and ethically

  • Your data is de-identified where possible before being input into AI systems

  • Informed consent is obtained before using AI tools that require your personal data

  • AI-generated content is reviewed by qualified professionals to ensure accuracy and relevance
     

Data Security

We take the security of client information seriously and implement appropriate measures to protect it from unauthorized access, use, or disclosure. This includes:

  • Secure storage of physical and electronic records

  • Regular audits and reviews of our data protection practices

  • Training staff on data privacy and security protocols
     

Client Rights

Clients have the right to:

  • Access personal information held by us

  • Request corrections to their personal information

  • Withdraw consent for the use of their information

  • Lodge a complaint if they believe their privacy rights have been breached

bottom of page