This Privacy Policy is a working summary. A full policy will be published prior to public launch and is governed by the Australian Privacy Act 1988 (Cth), the Australian Privacy Principles, and the My Health Records Act 2012.
What we collect
Personal details, health information, consultation notes, and technical telemetry necessary to deliver safe care.
How we use it
To deliver healthcare, communicate with you, meet legal and clinical obligations, and improve our service. We do not sell personal information.
Storage
Data is stored in Australia with appropriate encryption at rest and in transit. Access is limited to authorised personnel.
Your rights
You have a right to access your records, correct inaccuracies and complain to the OAIC. Contact privacy@nexushealth.com.au.
Sub-processors
Nexus Health uses the following third-party service providers to deliver care. Each is bound by contract to handle personal and health information in line with the Australian Privacy Act 1988 (Cth). Details marked to be confirmed before launch will be finalised and published prior to public launch.
- Halaxy — practice management, appointments and clinical records. To be confirmed before launch.
- Google Workspace — internal email, document collaboration and calendars used by Nexus Health staff. To be confirmed before launch.
- Stripe — payment processing for consultation fees and corporate billing. To be confirmed before launch.
- Website hosting provider — hosting of the Nexus Health website and patient portal. To be confirmed before launch.
- Secure document storage provider — storage of consultation documents, scripts and certificates. To be confirmed before launch.
This list will be kept current. Patients may request the latest sub-processor list at any time by contacting privacy@nexushealth.com.au.