Hi there! This website, www.sarahobrien.com.au, is owned and operated by me, Sarah O’Brien (ABN 71686035881).
If you have any questions or need further information, please email me:
Email address: firstname.lastname@example.org
I comply with the Australian Privacy Principles set out in the Privacy Act 1988 (Cth) (Privacy Act).
I understand that visitors from the EU may access this site, so I also aim to comply with the General Data Protection Regulations (GDPR).
If you engage with me via this website, or choose to become my client I may ask to collect the following kinds of personal information from you, including:
Interests & preferences
How and when
I may collect your personal information by various means including:
I use this information to:
I will only collect your personal information:
The following legal grounds relating to specifications by the GDPR justify the collection of said information;
I understand that some personal information is particularly sensitive.
I will only collect sensitive information by methods that are reasonably secure, such as:
The reason I collect this information is:
This information is required to allow me to safely and knowledgeably; assist, support, empower and educate you about holistic nutrition (diet, lifestyle and nutritional supplementation) in a manner that is specific to you and your individual situation.
It is also so that I can provide you with the services you have contracted for, and to ensure that I am providing you with the most appropriate services
Types of information
The sensitive information I ask you to provide for this purpose may include;
Your name, date of birth, contact details, next of kin, doctor’s details, occupation, health history (including past and current supplements, medications, diagnoses, allergies and intolerances and any other relevant information specific to your health), your familial medical history, information gathered during a review of relevant body systems (ie; immune or gastrointestinal system), review of any pathology or functional testing reports, review and analysis of your dietary intakes, lifestyle factors (ie; sleep, hobbies, living arrangements).
I am committed to securely storing and handling your sensitive information.
Sensitive information is stored in a locked filing cabinet (if in hardcopy) / on a password protected computer or on the cloud through G Suite as is detailed further below (if softcopy).
Only I may access sensitive material.
Some sensitive information may be stored securely online, or in the cloud through G Suite.
Collection from minors
Sensitive information may be collected from children under the age of 18 under the following circumstances:
Patient records are kept indefinitely inline with my association’s guidelines.
As a nutritionist I am subject to strict confidentiality requirements and I take my duty of care seriously. I am also dedicated to protecting the security of your information.
You may choose not to provide me with your personal information, however; specific and correct information must be provided at all times to ensure the quality and safety of any advice given.
If you do not provide me with accurate personal information, I may not be able to carry out my services as expected or achieve the purpose for which the information has been sought.
I am required to identify my clients by collecting their name and address, and failure to provide this information means I cannot offer my services to you.
Reasons why I may disclose your personal information include:
I will also disclose your information if required by law to do so or in circumstances permitted by the Privacy Act – for example, where I have reasonable grounds to suspect that unlawful activity, or misconduct of a serious nature, that relates to my functions or activities has been, is being or may be engaged in, and in response to a subpoena, discovery request or a court order.
If you have any concerns regarding the disclosure of your personal information, please do not hesitate to get in touch with me to discuss this personally.
I take responsibility for the security and risk management related to your information and regularly revisit this policy and ensure up to date compliance.
I manage risks to your personal information by:
As mentioned above, your personal information may also be stored with a third-party provider, where it will be managed under their security policy:
From time to time I may combine information provided by you with information gathered from:
If you do not wish this to occur, please contact me.
You can contact me to access, correct or update your personal information at any time. Unless I am subject to a confidentiality obligation or some other restriction on giving access to the information which permits me to refuse you access under the Privacy Act, and I believe there is a valid reason for doing so, I will endeavour to make your information available you within 30 days.
If you wish to request access or correction please contact me in writing via email at email@example.com and expect a reply within 5 days.
Complaint to external body
Should a complaint be made directly to me, any dispute may then be taken to external dispute resolution such as mediation, then complaint may go to OAIC (Office of the Australian Information Commissioner).
If you are not satisfied with my response to your complaint you may seek a review by contacting the Office of the Australian Information Commissioner using the information available at http://www.oaic.gov.au/privacy/privacy-complaints.”
Should any changes be made to this policy a new version will be posted to www.sarahobrien.com.au
If I have reason to suspect that a serious data breach has occurred and that this may result in harm or loss to you, I will immediately assess the situation and take appropriate remedial action. If I still believe that you are at risk, I will notify the Office of the Information Commissioner and either notify you directly, or if that is not possible, publicise a notification of the breach on this website.