PRIVACY POLICY

Advanced Human Imaging Ltd (ACN 602 111 115) trading as Dr Katherine (Katherine, we, us) is committed to protecting the information about you that we collect, store and use when you provide it to us on our website (our Site).

We respect your rights to privacy under the Privacy Act 1988 (Cth) (Privacy Act) and so in accordance with this Act, we are compliant with its requirements in respect of the collection, management and disclosure of your personal information.

We also uphold your rights to privacy if you are based in the European Union, in accordance with the General Data Protection Regulation (GDPR) (EU). Your rights under the GDPR are listed below.

If you do not wish to provide personal information to us, then you do not have to do so. However, this may affect your use of this Site or any products and services offered on it.

It is important that you revisit this privacy policy regularly, as we may change the content from time to time to reflect how we deliver our services and products to you.  

WHAT IS YOUR PERSONAL INFORMATION?

When used in this privacy policy, the term “personal information” has the meaning given to it in the Privacy Act and GDPR. In general terms, it is any information that can be used to personally identify you.  This may include your name, address, telephone number, email address and profession or occupation.  If the information we collect personally identifies you, or you are reasonably identifiable from it, the information will be considered personal information.

We may also collect some information that is not personal information because it does not identify you or anyone else. For example, we may collect anonymous answers to surveys or aggregated information about how users use our website.

Your personal information will not be shared, sold, rented or disclosed other than as described in this privacy policy.

PERSONAL INFORMATION COLLECTION AND USE

Dr Katherine may collect personally identifiable information about you (including but not limited to):

  • your name;
  • your contact information including email address;
  • medical information; 
  • images of you including video footage; 
  • your life experiences; and
  • payment details.

WHAT WE DO WITH YOUR PERSONAL INFORMATION

Dr Katherine processes your personal data for different purposes. When providing services to you, we may use your personal data for the following purposes and on the following lawful bases:

  • To fulfil its contract with you to provide services to you. For example, to:
    • enter into a contract with you;
    • provide products and services to you; 
    • respond to your queries; and
    • receive payments from you.
  • For various legal purposes. For example, to:
    • adhere to laws and regulations which apply to us; and
    • retain your personal information for a specified period.
  • Where you have given your consent. For example, this includes:
    • where you have given us consent to use images and video footage of you for our media and other marketing campaigns;
    • Providing you with information about our services and products that we feel may be of interest and benefit to you (unless you inform us that you do not want to receive direct marketing from us); and
    • If you have provided sensitive personal data (also known as special categories of personal data) which we have collected so that we can make any necessary adjustments for you in relation to how we deliver our services and products to you.
  • Where we have a legitimate interest to do so. For example:
    • for our internal administrative, marketing and planning requirements; and
    • to compile and report statistics, with all the relevant personal and/or proprietary information de-identified prior to the completion of such statistics.

HOW DO WE COLLECT YOUR PERSONAL INFORMATION?

We collect your personal information directly from you unless it is unreasonable or impracticable to do so. When collecting personal information from you, we may collect in ways including:

  • when you make an inquiry about our services;
  • through your access and use of our website, including when you register as a member of our website;
  • during conversations between you and our representatives;
  • when you ask to be placed on one of our subscription/mailing lists; or
  • when you become a client or customer of ours or otherwise use our products or services

TO WHOM WILL KATHERINE DISCLOSE MY PERSONAL INFORMATION?

We do not disclose personal information about you publicly or to third parties unless it is authorised or required by law, or as otherwise outlined in this Privacy Policy.

From time to time, we may disclose your personal information (on a confidential basis) to agents and others that we use in the ordinary operation of our business. This may include third party payment providers, marketing and promotion, user experience research and surveys, Site hosting and support and maintenance providers. We will only disclose your information to the extent required for the purpose of the third party providing services contracted to us so that we may service you.

Your personal information will never be sold to any third party.

We may share your personal data with third-party service providers located in countries outside of Australia. Where we do so, we will ensure that we have an agreement in place with the relevant provider which includes appropriate data protection provisions in order to protect your data.

TO WHOM WILL KATHERINE DISCLOSE MY PERSONAL INFORMATION?

We do not disclose personal information about you publicly or to third parties unless it is authorised or required by law, or as otherwise outlined in this Privacy Policy.

From time to time, we may disclose your personal information (on a confidential basis) to agents and others that we use in the ordinary operation of our business. This may include third party payment providers, marketing and promotion, user experience research and surveys, Site hosting and support and maintenance providers. We will only disclose your information to the extent required for the purpose of the third party providing services contracted to us so that we may service you.

Your personal information will never be sold to any third party.

We may share your personal data with third-party service providers located in countries outside of Australia. Where we do so, we will ensure that we have an agreement in place with the relevant provider which includes appropriate data protection provisions in order to protect your data.

DUTY OF CARE

If the information you provide us raises safety concerns for you and/or others, we will attempt to contact you to check that you and/or others are safe. However, if we believe it is necessary, we may pass on your details to authorities who can help protect you and/or others, such as a crisis service or the police. This decision will be made in our sole discretion.

WHAT HAPPENS IF WE CAN’T COLLECT YOUR PERSONAL INFORMATION?

If you do not provide us with the personal information described above, some or all of the following may happen:

  • we may not be able to provide our products or services to you, either to the same standard or at all;
  • we may not be able to provide you with information about services that you may want, including information about special promotions; or we may be unable to tailor the content of our website to your preferences and your experience of our website may not be as enjoyable or useful.

SITE USER TRACKING EXPERIENCE

We may use tracking software to review and improve your experience of our Site.

In particular, we may use Google Analytics Advertising products: Remarketing with Google Analytics and Google Analytics Demographics and Interest Reporting. Google Analytics collects data about our site traffic via Google Advertising cookies and anonymous identifiers. Data collected via these Google products is not linked with any personally identifiable information you submit while on our Site. If you wish to opt out of the Google Analytics data collection, you may do so on Google’s Site at https://tools.google.com/dlpage/gaoptout/.

We use cookies for authentication purposes and to tailor the site to your preferences. You can control the use of cookies at the individual browser level. If you reject cookies, you may still use our site, but your ability to use some features or areas of our site may be limited.

We may use local storage objects (LSOs) such as HTML5 to store content information and preferences.

COOKIES

When you access our Site, we may send a “cookie” (which is a small summary file containing a unique ID number) to your computer.  This enables us to recognise your computer and greet you each time you visit our website without bothering you with a request to register.  It also enables us to keep track of services you view so that, if you consent, we can send you news about those services.  We also use cookies to measure traffic patterns, to determine which areas of our website have been visited and to measure transaction patterns in the aggregate.  We use this to research our users’ habits so that we can improve our online services.  Our cookies do not collect personal information.  If you do not wish to receive cookies, you can set your browser so that your computer does not accept them.  We may log IP addresses (that is, the electronic addresses of computers connected to the Internet) to analyse trends, administer the website, track users’ movements, and gather broad demographic information.

SECURITY

As our website is linked to the Internet, and the Internet is inherently insecure, we cannot provide any assurance regarding the security of transmission of information you communicate to us online. We also cannot guarantee that the information you supply will not be intercepted while being transmitted over the Internet. Accordingly, any personal information or other information which you transmit to us online is transmitted at your own risk.

LINKS

We provide links to websites outside of our website, as well as to third party websites. These linked sites are not under our control, and we cannot accept responsibility for the conduct of companies, businesses, affiliates, advertisers and sponsors, linked to our website. Before disclosing your personal information on any other website, we advise you to examine the terms and conditions of using that website and its privacy policy. Third party websites are responsible for informing you about their own privacy practices.

SOCIAL MEDIA FEATURES

The Site includes social media features, such as Facebook, Instagram and Pinterest buttons. These features may collect your IP address, which page you are visiting on our Site, and may set a cookie to enable the feature to function properly. Social media features and widgets are hosted by third parties and your interactions with these features are governed by the privacy policy of the company providing them.

DIRECT MARKETING MATERIALS

We may send you direct marketing communications and information about our services that we consider may be of interest to you. These communications may be sent in various forms, including mail, SMS and email, in accordance with applicable marketing laws, such as the Spam Act 2003 (Cth).  If you indicate a preference for a method of communication, we will endeavour to use that method whenever practical to do so.  In addition, at any time you may opt-out of receiving marketing communications from us by contacting us (see the details below) or by using opt-out facilities provided in the marketing communications and we will then ensure that your name is removed from our subscription/mailing list.

We do not provide your personal information to other organisations for the purposes of direct marketing.

SECURITY AND DATA QUALITY

We take reasonable steps to ensure your personal information is protected from misuse and loss and from unauthorised access, modification or disclosure.

We strive to ensure the security, integrity and privacy of personal information that you submit to us through our website. Unfortunately, no data transmission over the Internet can be guaranteed to be totally secure. We endeavour to take all reasonable steps to protect the personal information you may transmit to us or from our online products and services. Once we do receive your transmission, we will also make our best efforts to ensure its security on our systems.

In addition, our employees and the contractors who provide services related to our information systems are obliged to respect the confidentiality of any personal information held by us.

We may hold your information in either electronic or hard copy form. Personal information is destroyed or de-identified when no longer needed or when we are no longer required by Law to retain it (whichever is the latter).

HOW LONG DO YOU RETAIN MY PERSONAL DATA FOR?

We will only keep your personal data for as long as necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements.

To determine the appropriate retention period for personal data, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorised use or disclosure of your personal data, the purposes for which we process your personal data and whether we can achieve those purposes through other means, and the applicable legal requirements.

By Law we have to keep basic information about our customers (including Contact, Identity, Financial and Transaction Data) for five years for Australian tax law purposes.

In some circumstances you can ask us to delete your data; see your legal rights below for further information.

In some circumstances we may anonymise your personal data (so that it can no longer be associated with you) for research or statistical purposes in which case we may use this information indefinitely without further notice to you.

Where you have provided your consent to use your personal information (images and video footage of you) for our media campaigns, we will retain your information for 3 years. If we would like to retain it longer than 3 years, we will seek a new consent from you to do so.

Where your personal data is contained in one of our recorded podcasts, we will retain the podcast for of 6 years. If we would like to retain it longer than this, we will seek a new consent from you.

IF I AM BASED IN THE EU, WHAT ARE MY LEGAL RIGHTS UNDER THE GDPR?

If the General Data Protection Regulation applies to you because you are in the European Union, you have rights under data protection laws in relation to your personal data:

  • The right to be informed – that’s an obligation on us to inform you how we use your personal data;
  • The right of access – that’s a right to make what’s known as a ‘data subject access request’ for copy of the personal data we hold about you;
  • The right to rectification – that’s a right to make us correct personal data about you that may be incomplete or inaccurate;
  • The right to erasure – that’s also known as the ‘right to be forgotten’ where in certain circumstances you can ask us to delete the personal data we have about you (unless there’s an overriding legal reason we need to keep it);
  • The right to restrict processing – that’s a right for you in certain circumstances to ask us to suspend processing personal data;
  • The right to data portability – that’s a right for you to ask us for a copy of your personal data in a common format (for example, a .csv file);
  • The right to object – that’s a right for you to object to us processing your personal data (for example, if you object to us processing your data for direct marketing); and
  • Rights in relation to automated decision making and profiling – that’s a right you have for us to be transparent about any profiling we do, or any automated decision making.

These rights are subject to certain rules around when you can exercise them.

If you wish to exercise any of the rights set out above, please contact us at [email protected].

HOW CAN YOU ACCESS AND CORRECT YOUR PERSONAL INFORMATION?

You may request access to any personal information we hold about you at any time by contacting us (see the details below). Where we hold information that you are entitled to access, we will try to provide you with suitable means of accessing it (for example, by mailing or emailing it to you).  We may charge you a reasonable fee to cover our administrative and other reasonable costs in providing the information to you.  We will not charge for simply making the request and will not charge for making any corrections to your personal information.

There may be instances where we cannot grant you access to the personal information we hold. For example, we may need to refuse access if granting access would interfere with the privacy of others or if it would result in a breach of confidentiality.  If that happens, we will give you written reasons for any refusal.

If you believe that personal information we hold about you is incorrect, incomplete or inaccurate, then you may request us to amend it. We will consider if the information requires correction.  If we do not agree that there are grounds for correction, then we will add a note to the personal information stating that you disagree with it.

HOW CAN YOU WITHDRAW YOUR CONSENT TO THIS PRIVACY POLICY?

You may withdraw your consent to certain processing outlined above at any point. If you wish to withdraw your consent to our collection and retention of your data, please contact our Data Protection Officer at  [email protected] and we can arrange for your data to be deleted where we no longer require it for the purpose which it is collected or we do not have a legal requirement to retain it. 

You may choose to restrict the collection or use of your personal information. If you have previously agreed to us using your personal information for direct marketing purposes, you may change your mind at any time by contacting us at the email address listed in this Privacy Policy.

To unsubscribe from our email database, or opt out of any communications, please contact us at the email address listed at the start of the Privacy Policy, with “Unsubscribe” in the subject line of the e-mail.

WHAT IS THE PROCESS FOR COMPLAINING ABOUT A BREACH OF PRIVACY?

If you believe that your privacy has been breached, please contact us using the contact information below and provide details of the incident so that we can investigate it. We will treat your complaint confidentially, investigate your complaint and aim to ensure that we contact you and your complaint is resolved within a reasonable time (and in any event within the time required by the Privacy Act and/or the GDPR, if applicable).

CONTACTING US

If you have any questions about this privacy policy, any concerns or a complaint regarding the treatment of your privacy or a possible breach of your Data Protection Officer using the details set out below. We will treat your requests or complaints confidentially.  Our representative will contact you within a reasonable time after receipt of your complaint to discuss your concerns and outline options regarding how they may be resolved.  We will aim to ensure that your complaint is resolved in timely and appropriate manner.

You can contact our Data Protection Officer as follows:

Name: Dr Katherine Iscoe

Email[email protected]

CHANGES TO OUR PRIVACY POLICY

We may change this privacy policy from time to time, however we will notify you of any changes to our privacy policy as and when they are made. Any updated versions of this privacy policy will be posted on our website and will be effective from the date of posting.

This privacy policy was last updated in May 2021.