Cygnet Clinic will not use your personal data for any marketing, data sharing, or any other non-clinical purpose. We strictly adhere to our legal obligations and ethical guidelines on the storage and management of any personal data.
Our Privacy Policy
About this Policy
Cygnet Clinic Pty Ltd, ABN: 21 633 929 889 (“we”, “us”, or “our”), is committed to safeguarding your privacy and upholding your right to control how your personal information is collected, used, and disclosed.
As an APP Entity under the Privacy Act 1988 (Cth) (“the Act”), this Privacy Policy aligns with the Australian Privacy Principles (APPs) and outlines how we collect, store, use, and disclose personal and sensitive information.
This Policy applies to our website, www.cygnetclinic.com.au (the “Site”), which we operate, and to the clinical and related services we provide.
“Personal Information” refers to any data that may identify you or reasonably lead to your identification, such as your name, contact details, and address.
“Sensitive Information” includes, but is not limited to, details about your health, medical history, racial or ethnic origin, religious or philosophical beliefs, sexual orientation or practices, or membership in professional or political groups.
⸻
Collection of Information
In order to provide services, we may collect the following:
• Personal Information, including name, email address, phone number, and billing details.
• Sensitive Information, including health records, referrals, medical history, medication details, and related clinical documentation—with your informed consent.
• Some, but not all, clinicians at Cygnet Clinic may offer the option of using secure medical AI scribing technology to support documentation, and this will always be discussed transparently with clients before use. Any such system is required to comply with all Australian health-service privacy and security requirements, including the Privacy Act 1988 (Cth), the Health Practitioner Regulation National Law, and applicable state-based health-records legislation, ensuring full legal compliance in clinical settings. Your data will not be stored in the scribe platform and any scribe platform is approved for Australian use and regulated by HPRNL.
Additionally, we may collect IP addresses, for no other purpose then compliance with data security (by ensuring suspicious IP addresses and activity associated with attempts to breach security measures are appropriately blocked). No such information is used by the clinic for any other purpose.
⸻
Use and Disclosure of Information
We collect and use personal and sensitive information primarily to deliver and manage our services, including:
• Scheduling appointments and maintaining client records
• Processing payments and managing billing systems
• Corresponding with referring medical professionals (with your consent)
We may also share your information (with every possible avenue for de-identified and encrypted information only) with third-party providers essential to our service delivery, such as administrative contractors or IT service providers.
Information may also be used for secondary purposes permitted under the Privacy Act, including legal compliance, professional consultations, and internal service evaluations. We do not sell or trade personal information to third parties under any circumstances.
With your consent, health information may be disclosed to your GP, specialists, or other healthcare providers where required for the continuation of care, or in emergencies where there is a serious risk to life or health.
Under the national health regulator, we are obliged to have peer supervision. This is a useful part of keeping practitioners accountable and also draws upon expertise of other more experienced clinicians to help develop and guide practitioners in their work. Clients identifying information (such as a name or place of work) has always been substituted by a pseudonym and other such measures to maintain confidentiality. The latest update in December 2025 to AHPRA's Code of Conduct requires a clinician to request consent to discuss your case in peer supervision whilst still maintaining our long-practice of de-idenitification. Your clinician will now be required to ask your permission to present a case in peer supervision.
⸻
Access and Accuracy
You may request access to or correction of the personal information we hold about you at any time. Requests should be directed to us via the contact details listed below.
We will respond to access requests within a reasonable timeframe. An administrative fee may be charged if the request involves retrieval from archives or off-site storage.
Requests may be declined where permitted by law, such as when information relates to legal proceedings. In such cases, reasons will be provided in writing.
⸻
Storage and Security
We implement appropriate technical, physical, and administrative safeguards to protect your personal information from loss, misuse, unauthorised access, or disclosure. These measures include password protection, secure servers, encryption, and SSL protection for our Site.
While we take every reasonable precaution, no method of electronic transmission or storage can be completely secure. You transmit data to us at your own risk.
Information may be stored:
• Electronically, using secure third-party data centres (only in Australian based data centres)
• Physically, at our clinic or in authorised secure storage facilities
You are responsible for maintaining the confidentiality of any passwords or access credentials related to your use of our services or systems.
⸻
Data Breach Notification
In the event of a suspected data breach, we will conduct a prompt assessment in accordance with the Notifiable Data Breaches (NDB) Scheme. If the breach is deemed eligible, we will notify affected individuals as soon as practicable.
If the breach pertains to the My Health Records Act, we may be required to notify the System Operator under section 73A of that Act.
⸻
Identifiers
Identifiers such as Medicare or Tax File Numbers are assigned by government agencies. Cygnet Clinic does not adopt, use, or disclose such identifiers except where legally required.
⸻
Career Applications
Any employment applications or resumes submitted to us are stored securely and used solely for the purpose for which they were submitted. Any informations, such as applications for positions and resume's uploaded through our website will be retained and stored on a secure system.
⸻
Cookies, Web Beacons and Analytics
To enhance your experience on our Site, we and our service providers may use cookies, web beacons, and similar technologies to monitor user activity and gather site usage statistics.
This data may include IP address, browser type, pages viewed, and session duration. If linked to identifiable information, it will be managed in accordance with this Privacy Policy.
⸻
Third-Party Websites
Our Site may contain links to third-party websites. Please note that these sites are governed by their own privacy policies, and we are not responsible for their content or practices.
⸻
Marketing Communications
Although this is not in Cygnet's current practice, we may occasionally send you communications regarding services we believe may interest you. These messages will be delivered in accordance with the Spam Act 2004 (Cth) and your communication preferences. Cygnet prefers that users of our website, including potential or current clients of our service, refer to the news sections on our website or through appropriate social media following to receive relevant information rather than sending out unsolicited marketing email.
If such a email campaign was initiated at any time in the future, you can unsubscribe from marketing emails at any time via the instructions provided in each email. Please allow up to 10 business days for changes to take effect.
Transactional or service-related communications will continue as needed.
If you receive unsolicited communication that appears to breach this policy, please contact us directly.
⸻
International Transfers
Personal information may be disclosed to overseas recipients such as cloud storage or administrative service providers. Such transfers occur only where we believe the recipient is subject to privacy obligations comparable to the Australian Privacy Principles.
⸻
Updates to This Policy
This Privacy Policy may be updated periodically. Any changes will be published on our Site and take effect from the date of posting. Continued use of our services constitutes acceptance of the updated policy.
Where material changes affect how we handle your data, we will endeavour to notify you in advance, either via email or a notice on the Site.
Current as of: 1 January, 2026
⸻
Complaints and Enquiries
For any questions, concerns, or complaints regarding your privacy or this policy, please contact us:
1) Use our Feedback Form
2) Email directors@cygnetclinic.com.au
3) Via Mail to our postage address
Managing Director
Cygnet Clinic
33/6 Keane Street
Midland, WA 6056
Phone: 08 9467 7676
If you are unsatisfied with our response, you may contact the Office of the Australian Information Commissioner by calling 1300 363 992 or writing to:
Director of Complaints
Office of the Australian Information Commissioner
GPO Box 5218, Sydney NSW 1042
<