Purpose

This Privacy Policy informs people that Stellar Health Solutions abides by the Australian Privacy Principles and the Privacy Act 1988 (Cth), which govern how private sector organisations collect, use, keep secure, and disclose personal and sensitive information during service provision. It also documents how an individual can access and correct their personal information and how we will facilitate or resolve a privacy complaint.

Scope

This Privacy Policy relates to Stellar Health Solutions Pty Ltd (ABN 11 657 706 904). Stellar Health Solutions’ privacy obligations relate to all systems, departments, staff, and contractors engaged by the organisation.

State and Territory Legislation

As a health service provider, Stellar Health Solutions acknowledges the requirements to comply with State and Territory privacy laws (where applicable) and Commonwealth obligations.

How We Seek and Manage Consent

At Stellar Health Solutions, we are transparent and respectful about collecting and using your personal and sensitive information — especially when your consent is required. As this policy outlines, we seek your express consent before we collect, use, or share your personal or sensitive information.

Consent is usually captured through:

  • An initial discussion with your Stellar Health Solutions clinician or representative
  • A written or digital consent form that outlines the specific uses of your information

By signing the consent form, you confirm your agreement to the disclosure, transfer, storage, or processing of your personal and/or sensitive information, including the potential for reporting to government registers (e.g., the Australian Immunisation Register), cross-border disclosure (where relevant), and use of data for quality improvement or research purposes (in de-identified form unless otherwise agreed).

Sometimes we may need to collect or share your information without consent — for example, when required by law or to protect someone’s health or safety.

Incapacity to Consent

Where you cannot provide informed consent or make decisions about your healthcare (such as during a medical emergency), we may disclose your personal information relating to your health to the person responsible for your care (such as a legal guardian or doctor).

Withdrawal of Consent

You can withdraw or change your consent at any time. This will not affect information already collected or disclosed; however, it may limit the services we can continue to offer.

Collection of Information

What is Personal Information?

Personal information is any information or opinion about an identified individual, or an individual who is reasonably identifiable, whether true or not, and whether recorded in material form.

Types of personal information we may collect include:

  • Name
  • Contact information
  • Employment details (where services are workplace-related)
  • Identification numbers (e.g. Medicare, Driver’s Licence, Passport)
  • Location data
  • Financial information (where relevant to billing or program funding)

What is Sensitive Information?

Sensitive information requires a higher level of protection. Given the nature of our work, we may collect sensitive information such as:

  • Health information (medical history, immunisation records, results of workplace assessments, clinical notes)
  • Racial or ethnic origin (for cultural safety and reporting purposes, e.g. Aboriginal or Torres Strait Islander identification)
  • Criminal history (only where required for specific occupational health services)
  • Gender identity and pronouns

We will not collect sensitive information without your consent, unless allowed under the Privacy Act (e.g. to lessen a serious threat to health or safety).

General Collection

We generally collect information directly from you, but may also collect it from:

  • Employers engaging us for workplace health services
  • Referring to health providers or pathology services
  • Funding bodies such as Country SA PHN (CSAPHN) (where funding programs support services)
  • The Australian Immunisation Register (AIR), Medicare, or other government health agencies (as required)
  • Other individuals during a medical emergency

Some information is mandatory to deliver our services; without it, we may be unable to provide you with healthcare or workplace services.

Storage of Information

Personal information is stored securely on electronic systems, including Zanda, Vitavo, and SharePoint, which use encryption, two-factor authentication, and geo-locking. Paper records are also stored securely and destroyed once they are no longer required.

Where third-party IT service providers are used, they must comply with Australian privacy laws and our internal policies.

Use and Disclosure of Information

We use or disclose your information only for the primary purpose it was collected, or a directly related secondary purpose you would reasonably expect, unless otherwise permitted by law.

Common uses include:

  • Verification of identity
  • Delivery of workplace health and immunisation services
  • Reporting vaccinations to the Australian Immunisation Register (AIR)
  • Meeting obligations with funding providers (e.g. CSAPHN) — usually in a de-identified form
  • Quality assurance, audits, and compliance
  • Research and service improvement (de-identified data)

We may disclose your information to:

  • Employers or contracting organisations (with your consent)
  • Health authorities (as required by law)
  • Funding bodies (e.g. CSAPHN)
  • Pathology providers, laboratories, and other healthcare providers
  • IT service providers under strict data security agreements

We do not sell, rent, or trade your personal information.

Access and Correction

You have the right to access the personal information we hold about you and request corrections if it is inaccurate, incomplete, or outdated. Requests can be made in writing to our Privacy Officer.

Complaints

Please get in touch with us if you have a concern or complaint about how your personal information has been handled. We will investigate and respond within a reasonable timeframe.

If you are not satisfied, you may refer your complaint to the Office of the Australian Information Commissioner (OAIC):

Website: www.oaic.gov.au

Phone: 1300 363 992

Email: enquiries@oaic.gov.au

Mail: GPO Box 5288, Sydney NSW 2001

Modifications and Updates

Stellar Health Solutions may amend this Privacy Policy from time to time to reflect changes in legislation or business practices. The latest version will always be available on our website.

Contacting Stellar Health Solutions

Privacy Officer

Stellar Health Solutions Pty Ltd

PO Box 582, Port Augusta SA 5700

Phone: 0472 792 626

Email: admin@stellarhealth.com.au