Privacy policy

Introduction

Bronte Medical Centre is committed to protecting the privacy and confidentiality of patient information. We manage all personal information in accordance with relevant State and Federal laws, including:

  1. Privacy Act 1988 (Cth)

  2. Privacy Amendment (Notifiable Data Breaches) Act 2017

  3. Health Records and Information Privacy Act 2002 (NSW)

  4. Health Records and Information Privacy Regulation 2012 (NSW)

  5. Health Administration Regulation 2010 (NSW)

This policy explains how we collect, use, store, and share your personal information. It also outlines your rights to access and update your information, and how to make a privacy-related complaint.

Bronte Medical Centre reviews and updates this policy regularly to ensure it remains aligned with current legislation and privacy standards. The latest version will always be available on our website and at the clinic.

Patient Consent

When registering with Bronte Medical Centre, patients are asked to give consent for their personal information to be collected, used, and shared for the purpose of providing quality medical care. Only staff members involved in your care will have access to your information.

If we need to use your information for any other purpose, we will ask for your specific consent before doing so.

Information Collection

We collect only the information necessary to provide appropriate medical care and manage our services effectively. This may include:

  • Full name, address, and contact details

  • Date of birth and gender

  • Medical history and current health information

  • Medicare details or health fund information

  • Family history relevant to care

Information may be collected directly from you via phone, online forms, or in person. In some cases, we may also receive information from other healthcare providers, specialists, hospitals, pathology or radiology services.

In emergencies, we may need to collect information from a relative or close contact.

We are required by law to retain medical records for certain periods, depending on the patient’s age and circumstances.

Anonymity and Pseudonyms

You have the right to remain anonymous or use a pseudonym when interacting with us, unless it is impractical for us to do so or we are required by law to identify you (e.g. when claiming through Medicare).

Use and Disclosure of Personal Information

Your information is treated as strictly confidential and will only be used or disclosed for purposes directly related to your care or as required by law. This includes:

  • Referrals to specialists

  • Sharing results with other healthcare providers

  • Participation in national eHealth systems (e.g. My Health Record, Australian Immunisation Register)

We may also need to share your information with third parties, such as:

  • Medicare or private health insurers

  • Hospitals or other health services

  • Government agencies, tribunals or courts

  • IT service providers or accreditation bodies working with us under strict confidentiality agreements

  • Debt collection agencies (only when necessary)

These third parties are required to comply with privacy laws and are only allowed to use your information for the services they provide on our behalf.

We will not share your information outside of Australia unless:

  • You have provided consent, or

  • We are required to do so by law (e.g. for international referrals or regulatory reasons)

Data Quality and Security

We take steps to ensure your information is accurate, up-to-date, and securely stored. This includes:

  • Verifying your contact details at each visit

  • Securing the premises and limiting staff access to sensitive information

  • Using password-protected systems and role-based access controls

  • Storing physical records in locked cabinets or rooms

  • Complying with the Notifiable Data Breaches (NDB) scheme to respond to data security incidents

Patients are encouraged to notify us if their personal information changes or appears to be incorrect.

Access to Your Information

You have the right to request access to your medical record. Requests must be made in writing, and we will respond within a reasonable timeframe. We may charge a small administrative fee for retrieving and copying records.

In limited cases, we may deny access if permitted by law (e.g. if access would pose a serious risk to your health or safety). If access is denied, we will provide you with written reasons and options for further action.

Correcting Your Information

If you believe that any information we hold is inaccurate, incomplete, or outdated, please let us know in writing. We will update your records as soon as possible.

Complaints About Privacy

We take all privacy concerns seriously. If you believe we have breached your privacy, please send a written complaint to the Clinic Manager (details below). We will review and respond to your complaint in line with our complaints handling procedures.

If you are not satisfied with the outcome, you may contact:

Office of the Australian Information Commissioner (OAIC)
Phone: 1300 363 992
Website: www.oaic.gov.au

NSW Privacy Commissioner
Phone: 1800 472 679
Website: www.ipc.nsw.gov.au

Contact Us

For any questions, concerns, complaints, or requests to access or update your information, please contact:

The Clinic Manager

Alanah Testore
Bronte Medical Centre
1/133–135 Macpherson Street
Bronte NSW 2024

Phone: (02) 9389 4422
Email: info@brontemedical.com

Policy Review Statement

This policy was reviewed and updated in July 2025. It will be reviewed periodically and updated to reflect any changes in legislation or clinic operations. The most current version is available on our website and at reception.