Book an Appointment
Book Now

Privacy Policy

1  Introduction

1.1  WiSE Medical is comprised of group of companies that provides a suite of various healthcare services across multiple clinical sites within Australia.

1.2     WiSE Medical is referred to in this Privacy Policy as “we”, “us”, “our” and similar grammatical forms.

2  Purpose

2.1     This Privacy Policy is to provide information to you on how your personal information (which includes your sensitive and information) is collected and used by us within our clinical sites, and the circumstances in which we may share it with third parties

3  Why and how your consent is necessary

3.1    When you register as a patient of with us at any of our clinical sites, you provide consent for us (including our employees, agents, contractors and other representatives) to access and use your personal information so the treating practitioners consulting from our clinical sites can provide you with the best possible healthcare. Only persons who need to see your personal information will have access to it. If we need to use your information for any other purposes, we will seek additional consent from you to do so.

4  Why do we collect, use, hold and share your personal information

4.1  We will need to collect your personal information to facilitate the provision of healthcare services to you by the practitioners consulting from our clinical sites. Our main purpose for collecting, using, holding and sharing your personal information is to facilitate the management of your health by those practitioners. We also use it for directly related business activities, such as financial claims and payments, practice audits and accreditation, business processes (e.g. staff training), staff, occupier and visitor health and safety, and in relation to considering and responding to any written communications that we receive from you.

5  What personal information do we collect

5.1   The information we will collect about you includes your:

(a)       names, date of birth, addresses, contact details including emergency contact and next of kin;

(b)         demographic information, including gender, cultural background, and religious beliefs;

(c)         medical information including medical history, medications, allergies, adverse events, immunisations, social history, family history and risk factors;

(d)         Names of General Practitioners and/or other doctors past or present involved in your care;

(e)         Medicare number (where available) for identification and claiming purposes;

(f)          Department of Veterans’ Affairs, Concession card details and other healthcare identifiers;

(g)         concession card details; and

(h)         health fund details.

6   Dealing with us anonymously

6.1     You have the right to deal with us anonymously or under a pseudonym unless it is impracticable for us to do so or unless we are required or authorised by law to only deal with identified individuals.

6.2     Please be aware that Medicare rebates are only available where a Medicare card (and / or associated information) is available. As such your practitioner may require you to pay for your consults in full without this rebate if you choose to deal with us anonymously or under a pseudonym.

7    How do we collect your personal information

7.1     We may collect your personal information in several different ways:

(a)       You may provide us with your personal information directly (for example, when you attend one of our clinical sites for healthcare services, our staff will collect your personal and demographic information);

(b)         The practitioners providing healthcare services may also collect further personal information from you which may be disclosed to us. Information can also be collected through My Health Record, e.g. via Shared Health Summary, Event Summary or through a Discharge Summary provided by a hospital or other healthcare service providers;

(c)         We may also collect your personal information when you contact us via our website, send us an email or SMS, telephone us, make an online appointment or communicate with us using social media; and

(d)         In some circumstances personal information may also be collected from other sources. Often this is because it is not practical or reasonable to collect it from you directly. This may include information from:

i             your guardian or responsible person;

ii            other involved healthcare providers, such as specialists, allied health professionals, hospitals, community health services and pathology and diagnostic imaging services; and / or

iii           your health fund, Medicare, or the Department of Veterans’ Affairs (as necessary).

7.2        If your healthcare practitioner deems it in your best interest to discuss your clinical information with you, we will arrange for this to occur either in person, via telephone or via videoconference.

8   When, why and with whom do we USE AND share your personal information

8.1    We collect, use and disclose your personal information to facilitate the provision of healthcare services to patients of the practitioners consulting from our clinical sites.

8.2     We may also share your personal information:

(a)         with other healthcare providers who provide necessary follow up treatment and ongoing care;

(b)         when it is required or authorised by law (e.g. court subpoenas, or where we are obliged to make a mandatory notification to a regulatory body);

(c)         when it is necessary to lessen or prevent a serious threat to a patient’s or a person’s (including an officer, staff member or contractor of WiSE Medical) life, health or safety or public health or safety, or where it is otherwise impractical to obtain your consent;

(d)         to assist in locating a missing person;

(e)         to establish, exercise or defend a claim;

(f)          for the purposes of confidential dispute resolution processes in connection with any complaint or claim;

(g)         for the purposes of uploading that information to your My Health Record, such as through the shared health summary or event summary;

(h)         for assisting with any calls relating to enquiries, emergency, follow up;

(i)          for planning, budgeting, funding and striving for ongoing improvement with our internal administration procedures;

(j)          for processing private health insurance claims, billing and debt recovery;

(k)         for participating in Benchmarking and Clinical Indicator programs to enable us to assess our level of service when compared to other hospitals in a de-identified format;

(l)          with third parties who work with our clinical sites for business purposes, such as accreditation agencies or information technology providers – these third parties are required to comply with the Australian Privacy Principles (APPs) and this policy.

8.3    Only people who need to access your information will be able to do so. Other than in the course of facilitating the provision of medical services or as otherwise described in this policy, our clinical sites will not share personal information with any third party without your consent.

8.4     We will not share your personal information with anyone outside Australia (unless under exceptional circumstances that are permitted by law) without your consent.

8.5     We will not use your personal information for marketing any of our goods or services directly to you without your express consent. If you do consent, you may opt out of direct marketing at any time by notifying us in writing.

9  How do we store and protect your information

9.1    Your personal information may be stored at our clinical sites in various forms.

9.2    Our clinical sites store information as electronic records (including via cloud-based services) and visual records (including photos).

9.3    Our clinical sites store all personal information securely via the use of passwords, encrypted back-ups, confidentiality agreements for staff and secure cabinets.

9.4    All records will be retained until the later of seven (7) years from your last contact with the clinical sites, or until you reach the age of twenty-five (25).

9.5    We take steps to destroy or de-identify information that we no longer require.

9.6    Our server security policy is designed to protect the servers from unauthorised access, data breaches, and other security threats. Our clinical sites uses the following security measures to ensure the personal information which it holds is secured:

(a)         Antivirus software is installed on all servers and updated regularly.

(b)         Firewalls are configured to block unauthorised traffic.

(c)         Servers are placed on their own subnet.

(d)         Access to servers is restricted to authorised users.

(e)         Physical access to the servers are limited, with servers located in a locked room and security cameras installed around the building.

(f)          Servers are patched regularly to fix security vulnerabilities.

(g)         Backups are created regularly onsite with daily offsite backups.

10   How can you access and correct your personal information at our clinical sites

10.1    You have the right to request access to, and correction of, your personal information.

10.2    We acknowledge that patients may request access to their medical records. You can lodge this request either via email info@wisemedical.com.au or telephone. Our clinical sites will acknowledge your request within three (3) business days. We can post the requested information to your postal address, or we can email the information to you if you request it. If we are required to process a request for your records, we may charge for our reasonable costs incurred in complying with your request.

10.3    We will take reasonable steps to correct your personal information where the information is not accurate or up to date. From time to time, we will ask you to verify that your personal information held by our clinical sites is correct and current. You may also request that we correct or update your information, and you should make such requests in writing to info@wisemedical.com.au. There is no fee charged for making corrections to your personal information.

11  How can you lodge a privacy-related complaint, and how will the complaint be handled at our clinical sites

11.1     We take complaints and concerns regarding privacy seriously. You should express any privacy concerns (including any breach of the APPs or any registered binding APP code) you may have in writing.

11.2     Complaints should be addressed to:

(a)         Attention: John Lightbown

(b)         Address: 701, Level 7, 133 Castlereagh, Sydney NSW 2000

(c)         Email: c/- EA@wisemedical.com.au

11.3     We will respond with acknowledgement of your complaint within five (5) business days and provide a response within thirty (30) business days.

11.4     You may also contact the Office of the Australian Information Commissioner (OAIC). Generally, the OAIC will require you to give them time to respond before they will investigate. For further information, visit www.oaic.gov.au or call the OAIC on 1300 363 992.

12   Privacy and our website

12.1     If you “like” or comment on our social media pages, we will have your social media name.

12.2     We use cookies to provide you with a better experience. These cookies allow us to increase your security by storing your session ID and are a way of monitoring single user access. Cookies are used on this website to record user-specific information.

12.3     This aggregate, non-personal information is collated and provided to us to assist in analysing the usage of the site. This website uses features to target advertising to people based on Google Analytics and other data. This allows us to display ads that relate to products and services you have viewed on our website as you browse other sites on the Google Display Network. These ads are displayed using a combination of 1st and 3rd party cookies. If you would like to opt-out of customised Google Display Network ads you can using the Ads Preferences Manager (https://www.google.com/settings/ads/onweb/). You can also use the Google Analytics Opt-out Browser Add-on (https://tools.google.com/dlpage/gaoptout/) so you are not tracked into Google Analytic.

12.4     We do not trade or sell any information that is volunteered or logged. When we use third parties to provide us with supplementary business services we ensure that they adhere to strict security and privacy standards.

12.5     From time to time, we may use collected information for new, unanticipated uses not previously disclosed in this privacy notice. If our information practices change at some time in the future we will post the policy changes to our website

12.6     Our web servers gather your IP address to assist with the diagnosis of problems or support issues with our services. Again, information is gathered in aggregate only and cannot be traced to an individual user.

12.7     Our website may contain links to third-party websites. We are not responsible for the content or privacy practices of websites that are linked from our website.

13   Privacy statement review

13.1     This privacy policy will be reviewed annually to ensure it is in accordance with any changes that may occur.

13.2     Last reviewed: May 2026.