Privacy Policy

NurseLink Healthcare is committed to protecting the privacy and confidentiality of personal information. This Privacy Policy outlines how personal information is collected, used, stored, and disclosed in accordance with applicable laws.

Last Updated: [27/8/25]

NurseLink Healthcare’s Privacy Policy

NurseLink Healthcare (“NurseLink Healthcare”, “we”, “our”, or “us”) is committed to protecting the privacy, confidentiality, and security of personal information entrusted to us. We recognise the importance of handling personal data responsibly and transparently across all interactions.

This Privacy Policy outlines how we collect, store, use, manage, and disclose personal information in accordance with the Australian Privacy Principles under the Privacy Act 1988 (Cth), and describes the measures we take to safeguard information held by our organisation.

Purpose, Scope and Applicability

Purpose, Scope and Applicability of the Policy

Policy Purpose & Intent

This Privacy and Confidentiality Policy sets out NurseLink Healthcare’s commitment to protecting personal information. It defines the principles, responsibilities, and standards governing how information is collected, handled, stored, used, and disclosed across all areas of the organisation.

Scope Of Personal Information

This policy applies to all personal and sensitive information held by NurseLink Healthcare, including health information, contact details, employment records, service documentation, feedback, complaints, incident reports, and any data that may reasonably identify an individual.

Application To Employees & Workforce

This policy applies to all NurseLink Healthcare employees, contractors, agency staff, and volunteers. All workforce members are required to comply with privacy obligations, confidentiality standards, training requirements, and internal procedures when accessing, using, or managing personal information.

Application To Clients & Stakeholders

This policy applies to clients, their authorised representatives, guardians, and relevant external stakeholders. It ensures personal information is managed lawfully, respectfully, and consistently throughout all interactions, service delivery activities, and communications with NurseLink Healthcare.

Compliance With Australian Privacy Principles

This policy supports compliance with the Australian Privacy Principles under the Privacy Act 1988 (Cth). It provides a structured framework for the lawful collection, use, disclosure, storage, and protection of personal information across NurseLink Healthcare operations.

Alignment with Aged Care Quality Standards

This policy aligns with Standard 8 of the Aged Care Quality Standards by supporting effective governance, accountability, and risk management practices that ensure personal information is handled securely and transparently to support safe, high-quality care delivery.

Alignment with NDIS Code of Conduct

This policy aligns with the NDIS Code of Conduct by promoting ethical behaviour, respect for privacy, responsible information handling, and safeguards that protect the rights, dignity, and wellbeing of NDIS participants and all individuals receiving services.

Definitions and Information We Collect

This section defines key terms used within this Privacy Policy and outlines the types of personal and non-personal information collected by NurseLink Healthcare. It explains what information is collected from clients, employees, and stakeholders, and how such information supports service delivery, compliance, and organisational operations.

Policies Breakdown:

Information Categories

NurseLink Healthcare collects personal and non-personal information necessary to deliver services, such as health and contact details, service records, feedback, incident reports, administrative data, and other information reasonably required to support operational, regulatory, and reporting needs.

Client Information

Client information is collected to assess eligibility for services, plan and deliver safe and responsive care, monitor service quality and outcomes, meet regulatory and reporting obligations, and facilitate appropriate communication with clients and their authorised representatives.

Employee Information

Employee personal information is collected for recruitment, employment, payroll, credentialing, compliance, and training purposes. This includes tax, superannuation, contact and emergency details, qualifications, and other data essential for lawful workforce administration.

Use Of Collected Information

Collected information is used, stored, and disclosed in accordance with the Australian Privacy Principles under the Privacy Act 1988 (Cth) to support operations, regulatory compliance, quality improvement, risk management, reporting obligations, and safe, high-quality service delivery.

Collection, Consent, Access & Disclosure

Collection, Use, Access and Disclosure of Information

Lawful And Fair Collection

NurseLink Healthcare collects personal information lawfully, fairly, and only where reasonably necessary to support service delivery, employment, compliance, and operational requirements, ensuring information is obtained transparently and in accordance with the Australian Privacy Principles.

Informed Consent

Informed consent is obtained prior to collecting, using, or disclosing personal information. Individuals are provided with clear explanations regarding the purpose of collection, how information will be used, stored, shared, and their right to withdraw or limit consent.

Purpose-limited Use

Personal information is used solely for the purposes for which it was collected, including service delivery, employment management, regulatory compliance, reporting obligations, and quality improvement, unless further use is authorised by consent or required by law.

Controlled Disclosure

Personal information is disclosed only with the individual’s consent, for emergency medical purposes, or where required or authorised by law, including mandatory reporting obligations. Any unusual or sensitive disclosures require appropriate approval and oversight.

Access And Correction Rights

Individuals have the right to request access to their personal information and to request correction of inaccurate or incomplete records. Requests are managed promptly and in accordance with privacy legislation, subject to limited lawful exceptions.

Identity Verification

Appropriate identity verification is required before releasing, discussing, or amending personal information. This ensures information is disclosed only to authorised individuals and protects against unauthorised access, misuse, or breaches of confidentiality.

Images, Recordings, And Media

Photos, videos, and call recordings are treated as personal information. Consent is obtained prior to collection or use, recordings are stored securely, access requests are managed appropriately, and retention periods comply with legal and organisational requirements.

Data Security, Breaches, Monitoring and Review

Key Benefits and Protections

Privacy Responsibilities And Staff Training

NurseLink Healthcare ensures privacy responsibilities are clearly assigned and understood across the organisation. All employees, contractors, and volunteers receive privacy and confidentiality training during induction and ongoing reviews to support compliance, accountability, and consistent information handling practices.

Notifiable Data Breaches Scheme Obligations

Where a data breach is likely to result in serious harm, NurseLink Healthcare complies with the Notifiable Data Breaches Scheme by promptly assessing the incident and notifying affected individuals and the Office of the Australian Information Commissioner as required by law.

My Health Record Participation

Where applicable, NurseLink Healthcare may access or upload information to the My Health Record system at a client’s request. Participation is voluntary, and clients retain control over access settings, restrictions, and their right to opt out in accordance with legislation.

Other Regulatory And Reporting Requirements

In addition to privacy legislation, NurseLink Healthcare may be required to report information to relevant regulatory bodies, government agencies, professional associations, insurers, or law enforcement authorities where legally required or authorised under applicable reporting frameworks.

Policy Monitoring, Review And References

This Privacy Policy is reviewed annually by the Senior Leadership Team to ensure ongoing compliance with legislative requirements, regulatory standards, and organisational practices. Reviews consider operational changes, audit outcomes, and feedback from clients, staff, and stakeholders.

Contact Information For Privacy Enquiries

Individuals may contact NurseLink Healthcare to raise privacy concerns, request access or corrections, or seek further information regarding this policy. Enquiries are handled respectfully, confidentially, and in accordance with applicable privacy legislation and organisational procedures.

Other Information

This section provides additional information regarding privacy practices, reporting obligations, and governance measures supporting the protection of personal information.

Employee personal information is collected, stored, and used only for lawful employment, payroll, and compliance purposes.
Individuals may request access to, or correction of, their personal information in accordance with privacy legislation.
Eligible data breaches are assessed and managed in line with the Notifiable Data Breaches Scheme requirements.
My Health Record information is accessed or uploaded only at a client’s request and in accordance with legal controls.
Privacy practices and this policy are monitored and reviewed regularly to ensure ongoing compliance and effectiveness.

Our Pledge To You

At NurseLink Healthcare, we are committed to delivering safe, respectful, and high-quality care while protecting your privacy, dignity, and rights through transparent, ethical, and accountable practices.

Contact Us

For privacy enquiries, access requests, or corrections to personal information, please contact NurseLink Healthcare using the details below.