Maddy Fulton logo Maddy Fulton logo

Introduction

Hi there! This website maddyfulton.com, is owned and operated by Madeline Fulton ABN: 25695720866. If you have any questions or need further information, please contact:

Maddy Fulton

Killcare, NSW, 2257.

hello[at]maddyfulton.com

This document sets out my Privacy Policy. It describes how I collect and manage your personal information when you interact with this site. I take this responsibility very seriously. If you have any questions or concerns about how your personal information is being handled, please do not hesitate to contact me.

I comply with the Australian Privacy Principles set out in the Privacy Act 1988 (Cth) (Privacy Act).

Personal Information

If you engage with me via this website, or choose to become my client I may ask to collect the following kinds of personal information from you, including:

Contact Details

  • your name and email address when you opt into my email
  • the country that you live in

Interests & preferences

  • your opinion about future topics, products or services that may interest you

Interaction

  • information that allows me to tailor my content to your needs when you sign up for one of my webinars or promotional events

Internet

  • with your consent, I may collect your IP address, and information about your browsing history to help me improve the usability and appeal of my website


Some of your personal and sensitive information may be stored with SimpleClinic Online. This information may include your personal details, health history, consultation notes, test results, prescriptions and treatment plans. SimpleClinic is an Australian owned practice management system for Naturopathic Practitioners and Complementary Health Care Providers. They comply with the Australian Privacy Act and take the protection of your information very seriously. They have a stringent security system, including password protected access to their platform restricted to registered subscribers, AES-246 or 256 bit SSL encryption of all sensitive information, access logging, and firewall and IP traffic monitoring for suspicious or malicious traffic. If you would like to know more, please contact us at [EMAIL] for a copy of SimpleClinic’s Privacy Policy. - under security in sensitive information.

Collection and Use

I may collect your personal information by various means including:

  • question or an inquiry is made using the contact form on my website
  • opt-in form for my mailing list
  • client engagement
  • requests for testimonials
  • cookies

I use this information to:

  • provide you with relevant news and updates about my services
  • improve this website and the services I provide
  • to respond to enquiries
  • to provide my Naturopathic services to you at your request
  • to monitor visitor and/ or client satisfaction
  • to help other people understand my services better
  • to provide more relevant information
  • to provide new about my developments in my area of work

I will only collect your personal information:

  • with your full awareness and consent, such as when you email me, tick a checkbox or fill in a form to provide me with information
  • if I need it to provide you with information or services that you request
  • if I am legally required to collect it
  • for necessary administrative processes if you become my client
  • if I believe that I can demonstrate a legitimate interest in using your data for marketing purposes, although I will always give you a choice to opt out.

Sensitive Information

I understand that some personal information is particularly sensitive.

I will only collect sensitive information by methods that are reasonably secure, such as:

  • through my online intake form when you book an appointment
  • during a session (online using ZOOM, over the phone or in person)
  • when you send me information in an email

The reason why I collect this information is:

  • so that I can support you with your health
  • to ensure that I am providing you with the most appropriate services

The sensitive information I ask you to provide for this purpose may include:

  • your medical history because it allows me to gather information that could pertain to your current health matter
  • your birth date because it allows me to understand what stage of life you are in from a biological view
  • your lifestyle because it allows me to determine any possible connection to your current health matter
  • your symptoms because it allows me to understand what might be happening physiologically and pathologically in your body
  • your pathology test results (blood test) because it allows me to investigate any connection between your pathology results and your health matter
  • your mental, emotional and spiritual health because it allows me to view your health matter holistically

 I am committed to securely storing and handling your sensitive information. 

How it is stored

  • Sensitive information is stored on a password protected computer

Who has access to it

  • Only I may access sensitive material

Cloud storage

  • Some of your personal and sensitive information may be stored with SimpleClinic Online. This information may include your personal details, health history, consultation notes, test results, prescriptions and treatment plans. SimpleClinic is an Australian owned practice management system for Naturopathic Practitioners and Complementary Health Care Providers. They comply with the Australian Privacy Act and take the protection of your information very seriously. They have a stringent security system, including password protected access to their platform restricted to registered subscribers, AES-246 or 256 bit SSL encryption of all sensitive information, access logging, and firewall and IP traffic monitoring for suspicious or malicious traffic. If you would like to know more, please contact them at support[at]simpleclinic.net for a copy of SimpleClinic’s Privacy Policy.

Collection from minors

Sensitive information may be collected from children under the age of 18 under the following circumstances:

  • in the presence of their parents
  • with their parent or guardian’s full consent

All information collected from minors is securely stored in accordance with this privacy policy.

Destruction policy

All archived sensitive information is securely destroyed after 7 years. If the client is a minor, the sensitive information is stored for 7 years once that client is 18 years old.

Professional Considerations 

As a Naturopath I take my duty to protect your information and keep it private and confidential.

You may choose not to provide me with your personal information. However,

  • If you choose not to be completely honest with me, I may not be able to support you with your health matters appropriately
  • I am legally required to identify my clients by collecting their name and address, and failure to provide this information means I cannot offer my services to you

Use of Personal Information

Reasons why I may disclose your personal information include:

  • to provide you with the services you have requested
  • to send you products that you have purchased

In order to do this, I may share some relevant personal information - on a strictly need to know basis - with:

  • Online dispensaries for patient orders
  • Australia Post or courier companies
  • My email marketing provider

I will also disclose your information if required by law to do so or in circumstances permitted by the Privacy Act – for example, where I have reasonable grounds to suspect that unlawful activity, or misconduct of a serious nature, that relates to my functions or activities has been, is being or may be engaged in, and in response to a subpoena, discovery request or a court order.

If you have any concerns regarding the disclosure of your personal information, please do not hesitate to get in touch with me to discuss this personally.

I will use all reasonable means to protect the confidentiality of your personal information while in my possession or control. I will not knowingly share any of your personal information with any third party other than the service providers who assist me in providing the information and/or services I am providing to you. To the extent that I do share your personal information with a service provider, I would only do so if that party has agreed to comply with our privacy standards as described in this privacy policy. However, some of my service providers may be overseas and may not be subject to Australian Privacy Laws or compliant with GDPR. Please contact me if you have any concerns about the potential disclosure of your information.

Security

I take reasonable physical, technical and administrative safeguards to protect your personal information from misuse, interference, loss, and unauthorised access, modification and disclosure.

I manage risks to your personal information by:

  • storing files securely
  • ensuring that only I / key personnel have access to sensitive information
  • releasing information to service providers on a strictly need-to-know basis, and
  • conducting regular audits of my security systems.

As mentioned above, your personal information may also be stored with a third-party provider, where it will be managed under their security policy:

  • G Suite - https://gsuite.google.com.au/intl/en_au/security/?secure-by-design_activeEl=data-centers 

From time to time I may combine information provided by you with information gathered from:

  • Facebook and/ or Instagram
  • Google Analytics
  • Personal contact

If you do not wish this to occur, please contact me.

Access to Information

You can contact me to access, correct or update your personal information at any time. Unless I am subject to a confidentiality obligation or some other restriction on giving access to the information which permits me to refuse you access under the Privacy Act, and I believe there is a valid reason for doing so, I will endeavour to make your information available to you within 30 days.

Please begin the process by sending an email requesting access to your information to me at hello[at]maddyfulton.com and I will endeavour to respond within 7 days.

Complaints

If a breach of this Privacy Policy occurs, or if you wish to request a change to your personal information, you may contact me by sending an email outlining your concerns to me at hello[at]maddyfulton.com and I will endeavour to respond within 48  hours.

If you are not satisfied with my response to your complaint you may seek a review by contacting:

  • the Office of the Australian Information Commissioner using the information available at http://www.oaic.gov.au/privacy/privacy-complaints.

Notification of Change

If I decide to change my Privacy Policy, I will post a copy of the revised policy on my website.

Notification of Breach

If I have reason to suspect that a serious data breach has occurred and that this may result in harm or loss to you, I will immediately assess the situation and take appropriate remedial action. If I still believe that you are at risk, I will notify the Office of the Information Commissioner and either notify you directly, or if that is not possible, publicise a notification of the breach on this website.