Pro Medicus Limited (ACN 006 194 752) and its related entities incorporated, or carrying on business, in Australia (including Promed (USA) Pty Ltd, PME IP Australia Pty Ltd and Visage Imaging (Aust) Pty Ltd (collectively referred to as Pro Medicus, we, us or our) are committed to the protection of personal information that relates to you in accordance with the Australian Privacy Principles (APPs) as set out in the Privacy Act 1988 (Cth) (Privacy Act).

This Privacy Policy describes the manner in which we collect, hold and use information that is covered by the Privacy Act. It is not intended to cover categories of information that are not covered by the Privacy Act.  If you wish to make any inquiries regarding this Privacy Policy, you should contact us in any of the ways specified in clause 14.

We may, from time to time, review and update this Privacy Policy including to take into account new laws, regulations and technology.  All Personal Information held by us will be governed by our most recent Privacy Policy, posted on our website (www.promed.com.au/privacy-statement) (Website).  Our most recent Privacy Policy will apply to our collection, use and disclosure of Personal Information.

1. What information is covered by the Privacy Act

Personal Information” is information or an opinion about an identified individual, or an individual who is reasonably identifiable, whether the information is true or not, and whether recorded in a material form or not.

Sensitive Information” is Personal Information about an individual that includes health information, genetic information, biometric information or templates, or personal information that is also information or an opinion about an individual’s race or ethnicity, their religious, political or philosophical beliefs, opinions or affiliations, their sexual orientation or criminal record.

Credit-related Information” is information about an individual that includes identification information about that individual, certain information about an individual relating to consumer credit (including eligibility information, repayment history, default and payment information), and information about an individual relating to an application for consumer credit or commercial credit or the individual’s credit worthiness.

2. What kind of information do we collect and hold?

We may collect and hold Personal Information or Credit-related Information about you such as your name, gender, date of birth, contact details (including your address, phone numbers and emails, whether personal or for work), financial information, payment details, bank account details, tax file number, products and services information and preferences.  We may also collect Personal Information that you submit to us via the Website.

3. Why do we collect Personal Information?

3.1 Why do we collect your information?

We collect Personal Information from customers, employees, contractors and other individuals that is reasonably necessary for one or more of our functions or activities, including: in order to allow us to conduct our business functions, to meet any regulatory requirements which apply to our business, to market and sell our products and services, to provide aftersales support and helpdesk services and including using third party providers to process sales and deliver our products; to improve our products and our marketing; and to conduct employee related activities.

3.2 How you may deal with us?

You have the option to deal with us anonymously or by using a pseudonym. However you acknowledge that where this is impractical (for example when you enter into a contract with us) or where the law or a court order provides otherwise, we are not required to provide these options to you.

If you choose not to provide your Personal Information to us, we may not be able to undertake certain activities for you such as providing you with requested information, products or services.

4. Collecting Personal Information

4.1 When and how do we collect your information?

We collect Personal Information directly from you when you: visit our Website, supply or buy products or services to or from us, request information about us or our products or services, provide feedback, respond to a survey, change your content or email preferences, enter into an agreement or contract with us, obtain technical support services and training from us, fill in a form or a request for services (including an application for an account with us ), fill in a form on our Website (including a registration form to register as a member), when you apply to or become an employee of Pro Medicus, or otherwise contact us by telephone, facsimile, email, post or in person.

If you provide Personal Information or Sensitive Information about other individuals to us, you acknowledge that, in doing so, you have complied with your obligations under the Privacy Act and relevant State and Territory legislation relating to the collection of Personal Information, Sensitive Information and health records.

4.2 Do we collect information about you in other ways?

We may also collect Personal Information about you via third parties including from our suppliers, merchants, direct mail, exhibition and trade events or online marketing.

In some circumstances we may receive Personal Information that we have not requested. If this occurs, we will comply with our obligations under the Privacy Act. You acknowledge that we may de-identify and/or destroy this information unless we are required to keep it by law.

5. Information collected via our Website

5.1 Website Terms of Use

This Privacy Policy together with our Website usage terms and conditions (Website Terms of Use) govern how we use, collect or disclose Personal Information provided on our Website. By using the Website you agree to the terms and conditions contained in this Privacy Policy and the Website Terms of Use. Both the Privacy Policy and the Website Terms of Use are posted on the Website (www.promed.com.au/terms-of-use).

We will not collect any Personal Information about users of our Website except when they knowingly provide it or as otherwise described below.  For example, we may collect Personal Information from users of the Website when they:

(a) order products and services online, including requesting refunds;

(b) complete an online form, including applying for membership programs,  registering to receive updates, promotional material or other information; and/or

(c) otherwise correspond with us.

5.2 Click Stream Data

When you visit and browse our Website, our Website host may collect Personal Information for statistical, reporting and maintenance purposes. Subject to clause 7.2, the Personal Information collected by our Website host will not be used to identify you.  The information may include:

(a) the number of users visiting our Website and the number of pages viewed;

(b) the date, time and duration of a visit;

(c) the IP address of your computer; or

(d) the path taken through our Website.

Our Website host uses this information to administer and improve the performance of our Website, including to assist with the diagnosis of and to provide support for any issues with our Website or services.

5.3 Cookies

Cookies are small text files that are transferred to a user’s computer hard drive by a website for the purpose of storing information about a user’s identity, browser type or website visiting patterns. We may use cookies to allow us to personalise your browsing and experience on our Website.

If we do use cookies, and you access our Website, a cookie is downloaded onto your computer’s hard drive when you first log on to our Website. You can adjust your internet browser to disable cookies, however we may not be able to provide you with all the service or functionality you require on our Website if you choose to do so.

5.4 Web Beacons

Web beacons are images that originate from a third party site to track visitor activities. We may use web beacons to collect aggregate data and provide this information to our Website host to administer and improve the performance of our Website.

5.5 Advertising

We may use Google and/or other third-party service providers to serve ads on our behalf across the Internet and sometimes on our Website. They may collect anonymous information about your visits to our Website (not including your name, address, email address or telephone number), and your interaction with our products and services. They may also use information about your visits to the Website and other websites to target advertisements for goods and services in order to provide more relevant advertisements about goods and services of interest to you.

5.6 Links to external websites

If you follow any links to third party external websites from our Website, the Privacy Policy and the Website Terms of Use will not apply to those websites which may have their own policies relating to privacy and data collection and website usage. If you choose to access any linked website or to provide any Personal Information on such websites you should review their policies and terms of use to learn more about how they may use your Personal Information. We are not responsible, and will not be liable, for the operations or policies of any third party external website.

6. How we use Personal Information?

6.1 How we use the Personal Information we collect about you?

We use the Personal Information we collect about you for our business functions and activities, which may include the following:

(a) to provide you with information, products or services you have requested, including where we engage third parties to process orders or provide you with goods or services on our behalf;

(b) to provide you with a customer account, including evaluating and processing your application for a customer account, assessing or approving an application for credit or assessing your credit worthiness;

(c) to manage your customer account or credit account (if applicable), including orders and payments, collecting overdue amounts, and managing fraud and risks;

(d) to promote and market our products and services to you, including to communicate with you via SMS or email newsletters;

(e) to personalise and customise your experiences on our Website;

(f) to help us research the needs of our customers;

(g) to conduct research for the purposes of improving existing products or services or creating new products or services;

(h) to provide you with ongoing information about us and our activities;

(i) to allow us to provide third party information and offers in which we believe you may be interested;

(j) to use aggregated or de-identified information for the purposes of data analysis, research and reporting;

(k) to comply with regulatory or other legal requirements;

(l) for purposes related to the recruitment and employment of our personnel and providing internal services to our staff; and

(m) for any other use required or permitted by law or any other purpose communicated to you at the time that the Personal Information was collected or for which you provided your consent.

We may use your Personal Information for a secondary purpose if that secondary purpose is related to the purposes listed in this clause 6.1, if we have your consent or if otherwise provided for under the Privacy Act.

Generally, we will only collect and use your Personal Information in accordance with this Privacy Policy. In the event that we collect or use Personal Information in ways other than as stated in this Privacy Policy, we will ensure that we do so in accordance with the Privacy Act.

6.2 Direct marketing

We may use your Personal Information to provide you with direct marketing materials if you would reasonably expect us to or if you consent to receive direct marketing materials. We will seek your consent to provide you with direct marketing materials if we have obtained your Personal Information from a third party. Direct marketing material may include promotional material about us or the products or services we offer.

You may opt out of receiving direct marketing material by contacting us in any of the ways specified in the direct marketing materials or as set out in clause 14.

7. When do we disclose Personal Information?

7.1 Who do we disclose your Personal Information to?

Depending on the nature of your relationship with us, we may disclose your Personal Information to our shareholders, officers and employees, other businesses within our group of companies, service providers who assist us in our business operations and recruitment activities (including third party service providers based overseas), government agencies, parties involved in the purchase or sale of any of our businesses, other third parties (including parties that we engage to process orders for our products, provide you with goods or services on our behalf or who are connected with or involved in our relationship with you), or otherwise as required by law.

7.2 Service providers

We may also disclose your Personal Information to our Website host or service providers in certain limited circumstances, for example when our Website experiences a technical problem or to ensure that it operates in an effective and secure manner.  To the extent that we do share your Personal Information with a service provider, we would only do so if that party has agreed to comply with its obligations under the Privacy Act or our privacy standards as described in this Privacy Policy.

We may also share non-personal, de-identified and aggregated information for research or promotional purposes in connection with providing requested information or services to you, or for the purpose of improving our services. We will not sell your Personal Information to third parties for marketing purposes.

Unless otherwise specified in this Privacy Policy, we or our Website host will not disclose any of your Personal Information to any other organisation unless the disclosure is required by law, is otherwise permitted by the Privacy Act, or is with your consent.

8. Disclosure of your Personal Information overseas

Your Personal Information may be disclosed outside of Australia to an entity in a foreign country, including entities in the Pro Medicus group of companies in which we have an ownership interest or to third party service providers (Overseas Entities). The countries in which these Overseas Entities are located include the United States of America, Germany and Canada.

It is possible that the Overseas Entities may be subject to foreign laws that do not provide the same level of protection of information as in Australia. We take reasonable steps to ensure that the Overseas Entities do not breach the APPs and that they are obliged to protect the privacy and security of your Personal Information and use it only for the purpose for which it is disclosed.

9. Employee Records

Employee records are not generally subject to the Privacy Act.  As such this Privacy Policy may not apply to the handling of employee related information. Please contact us directly for information about our employee information handling practices.

10. Storage and security of Personal Information held by us

We will take reasonable steps to protect your Personal Information from misuse, interference and loss and from unauthorised access, modification or disclosure.

We aim to keep your Personal Information secure and up to date.  We will comply with our obligations under the Privacy Act in relation to any Personal Information that we handle, including information which is held on our computer systems.

Personal Information that is held by us in hard copy is stored securely on our premises and is only disclosed or used for the purposes described in this Privacy Policy.

Part IIIC of the Privacy Act established the Notifiable Data Breaches Scheme (NDB scheme) in Australia.  The NDB scheme sets out obligations for notifying affected individuals and the Australian Information Commissioner (Commissioner) about a data breach which is likely to result in serious harm.

Where serious harm to affected individuals is likely, we will notify those individuals and the Commissioner in accordance with our legal obligations. You may contact our Privacy Officer (details specified in clause 14) should you require additional information.

11. Updating and correcting your Personal Information

We will take reasonable steps to ensure that the Personal Information that we hold is accurate, up-to-date and complete.  You can update your Personal Information at any time by contacting us in any of the ways specified in clause 14.  We welcome any changes to your Personal Information so as to keep our records up to date.

12. How long will we keep your Personal Information?

We will keep your Personal Information only for as long as required for our business purposes and otherwise as required by Australian law.

Where we no longer need to keep your Personal Information in accordance with this clause 12, we will take reasonable steps to destroy or de-identify your Personal Information.

If you wish to have your Personal Information destroyed or de-identified, please let us know and we will take reasonable steps to do so (unless we need to keep it for legal, auditing or internal risk management reasons, or as otherwise required by law).

13.  Finding out what Personal Information we hold about you

You are entitled to access Personal Information that we hold about you.  If you request access to your Personal Information, we will grant your request unless providing you with access would unreasonably impact upon the privacy of others or is not otherwise permitted under the Australian Privacy Principles or at law.  If we refuse your request to access your Personal Information, we will provide you with written reasons for the refusal.

A request for access can be made by contacting us in any of the ways specified in clause 14.

14. How to contact us, find out more information or make a complaint?

If you feel that your privacy has not been respected or that we have conducted ourselves inconsistently with this Privacy Policy, the APPs, a registered APP Code and/or the Privacy Act in respect of your Personal Information, or for any other queries, problems, complaints or communication in relation to this Privacy Policy, please contact us in any of the following ways:

14.1 Email

hall@promedicus.com.au 

14.2 Post

Att: Privacy Officer
Pro Medicus Limited
450 Swan St
Richmond VIC 3121
Australia

You can find out more information about the Privacy Act and the APPs from the Office of the Australian Information Commissioner. The Commissioner may be contacted at www.oaic.gov.au or by email at enquiries@oaic.gov.au.

Last updated: March 2018