Your Privacy is Respected

This practice policy outlines how the practice uses and manages your health information. The Notice to Patients is posted in our patient waiting area as a summary statement of the policy.

The practice is bound by the Australian Privacy Principles contained in the Commonwealth Privacy Act 1988 (Privacy Act) and applicable State legislation.

The practice will review and update this Privacy Policy on a regular basis.

Collection and Use of information

It is our usual practice to only collect health information directly from our patients or their authorized representatives.

Personal information such as your name, address, contact details, health insurance and financial details are used for the purpose of addressing accounts to you, as well as for processing payments, collecting unpaid invoices via an external collection agency, and writing to you about our services and any issues affecting your health care.

We will only collect your e-mail address if you send us a message or you provide us with your address directly. Your email address will only be used for the purpose for which you have provided it, and it will not be added to a mailing list or used for any other purpose without your consent. We may however, use your email address to contact you to obtain your consent for other purposes, but will give you the option of having your address deleted from our records at that time.

The practice may collect health information from a third party or a publicly available source, but only if the patient consents to such collection or would reasonably expect us to collect their health information from the third party, or if collection is necessary to provide the patient with appropriate health care.

Website security

Website statistics

The protection of personal privacy is our practice’s priority.

Our practice website, via our Internet Service Provider GoDaddy Limited Pty Ltd makes a record of your visit and logs the following information for statistical purposes only:

  1. Your server address
  2. Your domain or top level domain name (for example, .gov, .au, etc)
  3. The date, time and duration of your visit to the site
  4. The pages you accessed and documents downloaded
  5. The type of browser you are using
  6. your ISP may collect more or less information for you

No attempt will be made to identify users or their browsing activities except in the unlikely event of an investigation, where a law enforcement agency may exercise a warrant to inspect the ISP’s log.

Our Internet Service Provider provides this information to us via email every 6 months.

This non-identified information is used to monitor usage patterns on our site in order to improve navigation and design features – helping you to get information more easily.

Our website contains links to other websites. We are not responsible for other websites’ privacy practices, so care should be taken when providing personal information on any website.


This website uses Cookies to help Colac Dental Practice identify and track visitors, their usage of our website and their website access preferences. Visitors who do not wish to have cookies placed on their computers should set their browsers to refuse cookies before using our website. Unfortunately certain features of the Colac Dental Practice website may not function properly without the aid of cookies.

For more information on web cookies and related web privacy issues see Privacy Fact Sheet 4 – Online behavioural advertising — know your options (at )

Employer/Employee Responsibilities

As an employer, the practice also collects personal information related to employment and human resource management.

All staff employed in this practice are required to undergo training to understand their responsibilities in maintaining your privacy and to sign a confidentiality agreement in order to protect your personal information.

Use and disclosure

The practice only uses health information for the purposes of providing you with health care or for purposes which are directly related to providing you with health care. In addition, personal information is used to administer your invoicing for dental services, credit card payments, process health insurance claims or to collect unpaid invoices via an external collection agency. We will not use your health information for any other purpose unless one of the following applies:

1. You have consented;

2. The other purpose is directly related to providing you with health services and you would reasonably expect that your information may be used for that purpose; For example, the practice may disclose your health information to another health service provider for the purpose of providing you with health care. or

3. The use of your health information is required or authorized by law.

Data Quality

The practice takes steps to ensure that the health information we collect is accurate, up to date and complete. These steps include maintaining and updating personal and health information when you attend the practice or you advise us that your personal information has changed.

The practice keeps hard-copy and electronic records and takes reasonable steps to protect those records against loss, unauthorized access, use, modification or disclosure, or other misuse.

The practice ensures that hard-copy records are kept in locked files and there are security processes in place regarding computer access. The practice has taken steps to ensure that electronic data is backed-up.

After a period of 7 years (and if you attended the practice as a child, you have reached the age of 25) we may destroy your records in accordance with applicable laws.

Data Security

In the interests of your privacy, and given the inherent insecurity of information passed over the Internet, we do not currently support the transmission of personal health information to or from our patients over the Internet. If you send any personal health information to us via the Internet, we cannot guarantee its security.

We have deployed the following security measures to support more secure communication of sensitive information across the Internet.

• 128-bit encryption when recording personal information to help us keep your information secure and to maintain the quality.

Access and Correction

If an individual requests access to health or personal information we hold about them, or requests that we change that information, we will allow access or make the changes unless we consider that there is a sound reason under the Privacy Act, or other relevant law to withhold the information, or not make the changes.

Requests for access or correction must be in writing and directed to the practice Privacy Officer. If you have any questions, the Privacy Officer can be contacted during business hours at the practice.


The practice’s marketing functions support the growth and development of the practice and to provide you with information about services offered at the practice.

The practice may use your information for the purpose of direct marketing; however we will not on-sell your personal information.

The practice understands that you may not wish to receive marketing materials from the practice. If you would prefer not to receive such information, a request can easily be made to the Privacy Officer or another staff member at the practice.

Sending information overseas

As part of maintaining your records, the practice may use off-site electronic data storage providers or other third party service entities. These providers may be located offshore.

Where practicable, we will inform you about where your information is sent; however, at all times the practice will take reasonable steps to ensure compliance with the Australian Privacy Principles in relation to any off-shore transfer of your information.

We do not currently use any off-shore providers (2015).

Non-disclosure of information

Although we respect your right to privacy, if you choose not to provide us with information relevant to your care, we may not be able to provide a service to you or the service we are asked to provide may not be appropriate for your needs.

Importantly, you could suffer some harm or other adverse outcome if you do not provide information relevant to your care.


We take your privacy seriously. If you suspect there has been or may have been a breach of your privacy, you can complain directly to the practice Privacy Officer.

In the event of a privacy breach, the practice will comply with applicable guides or guidelines issued by the Office of the Australian Information Commissioner for the handling of privacy breaches.

For more information about Privacy laws, or to raise concerns about any matter not satisfactorily resolved with the practice you can contact the Office of the Australian Information Commissioner ( or ph. 1300 363 992).

Privacy and general complaints about your care can also be directed to the Health Services Commissioner., 1300 582113, Health Services Commissioner, Level 26, 570 Bourke St. Melbourne, Vic 3000


For further information about the practice’s management of privacy, please contact our Privacy Officer Dr Jayne McEwan, 36 Hesse St, Colac Vic 3250. 03 52312755

[ultimate_heading main_heading=”DOCUMENT DETAILS” heading_tag=”h3″ alignment=”center” spacer=”no_spacer” spacer_position=”top” spacer_img_width=”48″ line_style=”solid” line_height=”1″ line_color=”#333333″ icon_type=”selector” icon_size=”32″ icon_style=”none” icon_color_border=”#333333″ icon_border_size=”1″ icon_border_radius=”500″ icon_border_spacing=”50″ img_width=”48″ line_icon_fixer=”10″]FOR OFFICE USE ONLY (NOT FOR PATIENT)[/ultimate_heading]

This policy should be reviewed annually and any changes to policy and actions required should be documented and signed.

  • Responsible person:  Dr Jayne McEwan
  • Review cycle:  Annually
  • Date of last review:  26th August 2015
  • Action required:  Nil
  • Signed: