Privacy Policy - Work Medical Group

Work Medical Group Pty Ltd ("we", "us", "our") operates occupational health services and associated digital platforms across Australia. We are committed to protecting personal information in accordance with the Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs).

This Privacy Policy outlines how we collect, use, disclose, store, and protect personal information in the course of delivering occupational health, injury management, and related services.

Use of our website or services constitutes acceptance of this policy.

1. Personal Information Collected

We collect information reasonably necessary for occupational health service delivery, employer reporting (where applicable), and regulatory compliance.

This includes:

Identity and Contact

• Name, date of birth, gender
• Address, email, phone number

Employment and Occupational Context

• Employer details
• Job role and exposure history
• Workplace incident and injury data

Billing and Administration

• Medicare details (if applicable)
• Health insurer or compensation scheme details
• Payment information

Clinical Information (Sensitive Information)

• Medical history relevant to occupational assessment
• Clinical notes, examination findings, investigations
• Fitness for work assessments and restrictions
• Treatment plans and referrals

Website and Digital Interaction

• IP address, device metadata
• Usage analytics and cookies

Failure to provide required information may limit our ability to deliver services or provide compliant reporting.

2. Collection Pathways

We collect information via:

• Direct interactions (forms, bookings, consultations)
• Employers or authorised workplace representatives
• Referring practitioners or allied health providers
• Workers’ compensation schemes and insurers
• Government systems (e.g., Medicare, DVA)
• Digital platforms (e.g., online booking systems)

Cookies are used for session management and analytics. These do not typically identify individuals unless combined with other data.

3. Purpose of Use

We use personal information for:

• Occupational health assessment and clinical care
• Fitness for work and injury management reporting
• Communication (appointments, results, administrative contact)
• Billing and claims processing
• Compliance with legal and regulatory obligations
• Service quality improvement and audit
• Teaching and research using de-identified data

Where identifiable data is used for research, this occurs only with consent or appropriate ethics approval.

Marketing communications are limited and opt-out mechanisms are provided.

4. Disclosure of Information

We may disclose personal information to:

• Treating clinicians within Work Medical Group
• Employers or authorised representatives (within legal and consent boundaries)
• Workers’ compensation insurers and regulatory bodies (within legal and consent boundaries)
• Third-party service providers (e.g., IT, booking platforms) under confidentiality obligations
• Government agencies where required by law
• Professional advisers and insurers

Data is primarily stored in Australia. Limited offshore access may occur for system support functions. By engaging our services, you acknowledge this potential disclosure.

5. Storage and Security

We implement administrative, technical, and physical safeguards to protect personal information from misuse, interference, loss, and unauthorised access.

Retention periods:

• Minimum 7 years from last service
• Until age 25 for records created before age 18

Data is securely destroyed or de-identified when no longer required.

6. Access and Correction

Individuals may request access to or correction of their personal information.

Requests must include sufficient identifying details and be directed to our Privacy Officer. Responses are provided within applicable statutory timeframes.

Access may be subject to reasonable administrative fees. Where access is denied, written reasons will be provided.

7. Complaints

Privacy concerns or complaints should be submitted in writing to the Privacy Officer.

We will:

• Acknowledge receipt
• Investigate the matter
• Provide a response within a reasonable timeframe

If unresolved, complaints may be escalated to the Office of the Australian Information Commissioner (OAIC).

8. Contact

Privacy Officer
Work Medical Group Pty Ltd

Email: privacy@workmedical.com.au
Post: Level 4, 244 Coward St, Mascot NSW 2020, Australia