Privacy and client confidentiality

Knight Remedial Massage strives to provide an elite service and create a space where you feel safe and confident to achieve your goals.

I (Brooke Knight) work in close collaboration with Renue Wellness Singleton to achieve a wholistic approach however it is solely client discretion to disclose information with Renue Wellness in accordance with their privacy policy. Information disclosed directly to me (Brooke Knight) will remain confidential unless discussed and agreed on between client and therapist.


Privacy Policy // Knight Remedial Massage Singleton

My (Brooke Knight) commitment to your privacy and handling personal information about you, including health information and any additional information disclosed during treatment period (excluding in the event where situation may be deemed life threatening, or both parties are in agreement to disclose relevant information in the case of referral to another health professional) in accordance with the requirements of the Commonwealth Privacy Act 1988.

The term “I/my/me” will refer to Knight Remedial Massage, Brooke Knight

The term “you” will refer to client/patient

In this Policy explains:

  • what kind of information I collect and hold about you
  • how and why I collect it
  • what I do with that information and who I share it with (and when)
  • your right to seek access to, and if required correction of, the records we hold about you
  • your right to make a privacy complaint, to me and others
  • whether I am likely to disclose information about you to overseas recipients.

Sole Trader Brooke Amos T/A Knight Remedial Massage, ABN: 44 797 496 334 recognises the importance of your privacy and respects your right to control how your personal information is collected and used.

We are an APP Entity as defined in the Privacy Act 1988 (Cth) (the “Act”). This Privacy Policy (“Privacy Policy”) is aligned with the Australian Privacy Principles as set out in the Act and describes the way that we may collect, hold and disclose personal information.

In this policy “Personal Information” means any information that may identify you, or by which your identity might be reasonably determined. The information you provide me may include, amongst other things, your name, address, email address, and phone number.

Sensitive Information” means any information about an individual’s racial or ethnic origin, political opinions, memberships of a political organisation, religious belief or affiliation, philosophical belief, membership of a professional or trade association, membership of a trade union, sexual preference or practices, criminal record or health information.

Health Record” means any information held by me concerning your health. It may include your medical records, clinical history, medications, diagnoses, treatment, tests and results, medical procedures, your genetic information, file notes, consents, referrals and clinical correspondence, medical imaging, immunisation records and any other information provided or collected by me relating to your health.

What kind of personal information do I collect about you?

I collect and hold the following kind of information about you:

  • your name, address, date of birth, email and contact details
  • information about your family or relatives
  • information about other health professionals involved in your care
  • any government identifiers such as Medicare number, DVA number. However,
    I do not use these for the purposes of identifying you in my practice
  • other health information about you such as: a record of your symptoms, your relevant medical history, the diagnosis made and the treatment I give you:
    • specialist reports
    • test results
    • your appointment and billing details
    • your prescriptions
    • your healthcare identifier
    • your health fund details
    • other information about you collected for the purposes of providing care to you.

Collection

The purpose for which I collect personal information is to provide you with the best service experience possible and for our internal business purposes that form part of normal business practices. Some provision of personal information is optional. However, if you do not provide me with certain types of personal information, you may be unable to enjoy the full service as intended.

To provide my services to you, I may collect Personal Information, such as your contact details, including your name, email address, telephone number, your business or company name and your payment and billing information, which I use to bill you for the services and to process your payments, including credit card details. We may also collect details of conversations in relation to treatment I have had with you or any other information relevant to me.

I may collect Sensitive Information about you, such as medical reports, referrals, medication, health history and other important health information where you consent, and such information is reasonably necessary to provide my services to you.

I automatically collect through our Site and services, information that is often not personally identifiable, such as the website from which visitors came to our Site, IP address, browser type and other information relating to the device through which they access the Site. I may combine this information with the Personal Information we have collected about you. 

How do I collect and hold your personal information?

I will generally collect personal information about you in these ways:

  • directly from you when you give us your details (eg, face-to-face, over the phone, via registration form or an online form)
  • from a person responsible for you
  • from a third party where we are permitted by law to do that (eg. other health care professionals involved in your care, from your health insurer, from the My Health Record system etc.).

Why do I collect and use information about you?

I primarily collect and use personal information about you to provide our Therapy services to you and to communicate with you and others involved in your care in relation to those services.

We also sometimes use that information for other purposes, including:

  • to help us manage our accounts and administrative services, including billing, arrangements with health funds, pursuing unpaid accounts, management of our IT systems and
  • to conduct accreditation, quality assurance or internal audits.

Use & Disclosure

Personal Information collected by me will generally only be used and disclosed for the purpose it was collected. This includes maintaining your contact details, providing you with my products and services and processing payments. I may disclose your Personal Information to third parties or contractors who are integral to the provision of our services.

I may, from time to time, use Personal Information for another purpose where it would be reasonably expected by you or if permitted by the Privacy Act, including to effectuate or enforce a transaction, procuring advice from legal and accounting firms, auditors and other consultants. We may also disclose your Personal Information in circumstances where I am compelled by Australian legislation or a court of law to do so. I do not and would not sell your Personal Information. I may aggregate the information you and others make available to me (such as aggregated data) and share it with third parties. I may use and share this aggregated information with third parties for market analysis, research, marketing or other purposes such as to improve our services or to help our partners (Renue Wellness) understand more about the users of our service and health issues. You can object to us using your information for these purposes.

I will not disclose, sell, share or trade your Personal Information to any third parties unless we first receive your consent.

In the event that I sell my business, or engage in a transfer, mergers, restructure or change of control or other similar transactions, customer information (containing Personal Information) is generally one of the business assets that forms part of the transaction. Your Personal Information may be subject to such a transfer. In the unlikely event of insolvency, Personal Information may be transferred to a trustee or debtor in possession and then to a subsequent purchaser.

I may provide health information to other medical service providers, such as your general practitioner, specialist medical practitioners and allied health professionals. I will only supply this information with your consent, or in circumstances where it is required for the delivery of health services, such as referral to another health service provider, billing and liaising with government offices regarding Medicare entitlements and payments, where it is necessary to prevent or lessen a serious threat to a patient’s life, health or safety, or other reason as permitted by law.

When and why might I share information about you with others?

I may disclose information about you to others outside of our practice as permitted or required under law. This will include situations where we disclose information about you in order:

  • to comply with our legal obligations (eg. mandatory reporting under legislation, responding to a court order or subpoena)
  • to consult with other health professionals involved in your healthcare
  • to get test results from diagnostic and pathology services
  • to claim on insurance
  • to communicate with your health fund, with government and other regulatory
    bodies such as Medicare
  • to help me manage my accounts and administrative services (eg. billing or debt recovery, arrangements with health funds, pursuing unpaid accounts etc.)
  • to lessen or prevent a serious threat to a patient’s life, health or safety or a serious threat to public health or safety
  • to help in locating a missing person
  • to establish, exercise or defend an equitable claim through the My Health Record
  • to prepare the defence of anticipated or existing legal proceedings
  • to discharge notification obligations to liability insurers.

Your right to seek access to and to seek correction of the information we hold about you

You have the right to seek access to and correction of the personal information we hold about you. 

Access & Accuracy

You can access and/or correct information we hold about you at any time by contacting us at knightremedialmassage@gmail.com I encourage you to contact me to keep your Personal Information up to date.

I will normally respond to your request within 30 days. To make the request, you should contact knightremedialmassage@gmail.com If you think that the information I hold about you is not correct, let me know in writing (email). I will take reasonable steps to correct your personal information where the information is not accurate or up-to-date. From time to time, I may also ask you to verify that the information we hold about you is correct and current. And please notify me if and when your contact details change (Email).

If required by law or where the information may relate to existing or anticipated legal proceedings, I may deny your request for access to your information. I will respond to your request, setting out the reasons for our refusal in writing.

Security: how we hold your personal information

I take reasonable steps to protect the information I hold about you. These are designed to prevent unauthorised access, modification or disclosure and to prevent misuse and loss.
This includes:

  • holding information in a lockable cabinet
  • holding information on an encrypted database
  • holding information in secure cloud storage
  • access to information restricted on a ‘need to know’ basis and
  • strong password protections when accessing the information on a computer.

I will take reasonable steps to protect your Personal Information from misuse, loss, unauthorised access and modification or disclosure. I use commercially reasonable physical, technical, and administrative measures to protect Personal Information that we hold, including, where appropriate, password protection, encryption, and SSL to protect our Site.

Despite taking appropriate measure to protect Personal Information used and collected by me, please be aware that no data security measures can guarantee 100% security all the time. I cannot guarantee the security of any information transmitted to us via the internet and such transmission is at your risk.

If I no longer require the use of your Personal Information, I will take reasonable steps to destroy or permanently de-identify it.

Personal Information may be stored electronically through third-party data centres, which may be located overseas, or in physical lockable storage at my premises or third-party secure storage facilities.

Data Breach Notification Scheme

If I have reason to suspect a data breach has occurred, I will undertake an assessment in accordance with the Notifiable Data Breach Scheme. If I determine there has been an eligible data breach, I will notify you as soon as reasonably practicable.

If the breach relates to the My Health Records Act, we may disclose your Personal Information to the My Health Records System Operator under s 73A of that Act.

Your right to receive treatment from me anonymously (or by using a pseudonym).

Where it is lawful and practicable for us to do so, you can be treated anonymously or through use of a pseudonym (a name other than yours). You may request to remain anonymous when you seek health services from me. While I endeavour to comply with any request to use our services anonymously or using an alias, there may be circumstances in which it is unlawful or unpracticable to do so.

Your health care will always remain our priority, and we are unable to provide services in circumstances where treating you anonymously may compromise your treatment or health outcomes.

I cannot provide Medicare rebates or access to Veterans Affairs entitlements without properly identifying you. If you request to be seen anonymously. I have a legal obligation, under the Public Health Act, to report certain medical conditions. If, during the course of providing my services, I diagnose a prescribed medical condition, I must make a report, including your identity, to the Health Department.

Cookies, web beacons and analytics

When you interact with my Site, I strive to make your experience easy and meaningful. I, or my third-party service providers, may use cookies, web beacons (clear GIFs, web bugs) and similar technologies to track site visitor activity and collect site data. I may combine this data with the Personal Information I have collected from Customers. Examples of information that I may collect include technical information such as your computer’s IP address and your browser type, and information about your visit such as the products you viewed or searched for, the country you are in, what you clicked on and what links you visited to get to or from my Site. If I identify you with this information, any use or disclosure of that information will be in accordance with this Privacy Policy.

Third-party websites

At times, my Site may contain links to other third-party websites (Renue Wellness) Any access to and use of such linked websites is not governed by this Privacy Policy, but, instead, is governed by the privacy policies of those third-party websites. We are not responsible for the information practices of such third-party websites.

Marketing emails

I may send you direct marketing emails and information about products and services that I consider may be of interest to you. These communications will only be sent via email and in accordance with applicable marketing laws, such as the Spam Act 2004 (Cth) as you consented to upon registering for my services. If, at any time, you would like to stop receiving these promotional emails, you may follow the opt-out instructions contained in any such email. Please note that it may take up to 10 business days for me to process opt-out requests. If you opt-out of receiving emails or promotions from me, I still may send you email about your account or any Services you have requested or received from me or for other customer service purposes. I do not provide your Personal Information to other organisations for the purposes of direct marketing.

If you receive communications from us that you believe have been sent to you other than in accordance with this Privacy Policy, or in breach of any law, please contact me using the details provided below.

Disclosing information about you overseas

I do not propose to disclose information about you to anyone overseas. If I want to transfer your personal information overseas, I will first seek your consent, unless I am required by law to do the transfer.

If you have a privacy-related concern about me If you have concerns about the way I’ve handled your privacy, let me know. You should do that in writing (email). I will then try to respond to you within 30 days.

If you are not satisfied with my response, you can refer your complaint to the Office of the Australian Information Commission, whose contact details are:

Phone: 1300 363 992
Email: enquiries@oaic.gov.au
Post:    GPO Box 5218 Sydney New South Wales 2001

Website: https://www.oaic.gov.au/privacy/privacy-complaints/


Updating this policy

I will update this policy from time to time, to reflect any changes in my information-handling practices or the law or both.

I will notify you of changes to the policy by posting on my website and on request via email. You should periodically check and review our current Privacy Policy, which is effective as of 25/05/2025 Your continued use of any of my Site and services constitutes your acceptance and understanding of the Privacy Policy as in effect at the time of your use. If I make any changes to this Privacy Policy that materially affect my practices with regard to the Personal Information I have previously collected from you, we will endeavour to provide you with notice in advance of such change by highlighting the change on the Site, or where practical, by emailing Customers. This Policy is current as of 25/5/25.

Complaints and Enquiries

If you have any questions or complaints regarding privacy, or if at any time you believe I may have wrongfully disclosed your Personal Information or breached my Privacy Policy, please contact me via email at: knightremedialmassage@gmail.com or lodge your complaint in writing to:

Brooke Amos (Brooke Knight)
Owner/ Operator
Sole Trader Brooke Amos T/A Knight Remedial Massage
19/21 Ryan Avenue, Singleton NSW 2330

If you are not satisfied with my response, you are entitled to contact the Office of the Australian Information Commissioner, by phoning 1300 363 992 or writing to the Director of Complaints, Office of the Australian Information Commissioner, GPO Box 5218, Sydney NSW 1042.

To contact us about any privacy related issues, please approach: Brooke Amos (Brooke Knight) either via email knightremedialmassage@gmail.com or in person at Renue Wellness Singleton

Contact

knightremedialmassage@gmail.com

Location

19/21 Ryan Avenue,

Singleton NSW 2330