Last Updated 5th September 2023.

This is the Privacy Policy of Qantum Kinesiology Pty Ltd ACN:669 532 78/ABN: 69669532781 (“we”, “us”, “our”).
This Privacy Policy sets out how we collect, use, and protect your personal information when you interact with our website (“Site”), social media platforms (“Platforms”) and services (“Services”). Please read this policy carefully to understand how we handle your information.

Overview

We respect your right to privacy and are committed to safeguarding the privacy and data security of our clients and website visitors. We adhere to the Australian Privacy Principles (APPs) contained in the Privacy Act 1988 (Cth) and where required by law, the General Data Protection Regulations (GDPR) and the California Consumer Privacy Act (CCPA).

By accessing or using our Site or our Services, you agree to our use of your information in accordance with this Privacy Policy. We encourage you to read through and contact us if you have any questions.

What kind of information do we collect?

Personal Information

Where necessary, we collect information from you that enables you to be identified as an individual, such as your name, email address, phone number or payment details, or identifiable as a household, such as your address. This kind of information is defined in the GDPR as personal data and in the CCPA and the APPs as personal information. The terms “personal data” and “personal information” are used interchangeably through this privacy policy.

Generally, the type of personal data that we collect is the information that we need to enable you to use our Site, Platforms and provide our Services to you. To minimise the impact on your privacy, we will never knowingly collect more personal data than is strictly necessary to perform the activities described in this privacy policy.

Sensitive Information

We may collect and process sensitive information as defined in the Australian Privacy Principles (APPs) where necessary and with your explicit consent. Sensitive information may include information about your health, medical history, or other sensitive personal characteristics relevant to the provision of our Services.

We will only collect and handle sensitive information in accordance with the APPs, GDPR and CCPA and with your consent. We will take appropriate measures to ensure the security and confidentiality of sensitive information, and we will not use or disclose it for any purpose other than the purpose for which it was collected, unless required by law or with your consent.

By providing us with sensitive information, you consent to its collection, use, and disclosure as outlined in this Privacy Policy.

Payment Information

If you make a payment for our Services, we may collect and process your payment details. Please note that we do not store your payment card information. All payment transactions are securely processed through our third-party payment processors, Stripe and PayPal. Please refer to Stripe’s privacy policy for more information. https://stripe.com/en-au/legal/privacy-center
Please refer to PayPal’s privacy policy for more information. https://www.paypal.com/us/legalhub/privacy-full

Booking Information

When you make a booking with us, we may collect information related to your appointment, including the date, time, and type of session. Our booking system, Calendly, facilitates the scheduling process. Please review Calendly’s privacy policy for details on how they handle your information. https://calendly.com/privacy

Session Information

If you participate in online sessions, we may collect session-related information, including session duration and any notes or records relevant to your session. Online sessions may be conducted using Zoom or telephone, and you should review their respective privacy policies for information on how they handle your data. https://explore.zoom.us/en/privacy/

Device Information

When you visit our Site, we automatically collect certain information about your device, that may include information about your IP address, time zone, location, device type and model and/or some of the cookies that are installed on your device. Additionally, as you browse the Site, we collect information about the individual web pages or services that you view, what websites or search terms referred you to the Site, and information about how you interact with the Site.

Social Media Platforms and Testimonials

We may collect and use personal information shared on social media platforms for the purpose of client testimonials. Your testimonial or review may include personal information such as your first name, initials, or general geographic location. However, we are committed to protecting your privacy, and we will take reasonable steps to ensure that any personal information shared in testimonials or reviews is anonymised or used with your explicit consent.

Cookies

Our Site uses cookies. Cookies are very small files that are saved to your computer and a website uses to identify you when you come back to the Site and to store details about your use of the Site. Cookies enable us to provide a better website visitor experience. Most web browsers automatically accept cookies, but you can choose to reject cookies by changing your browser settings. However, this may prevent you from taking full advantage of our Site.

Do not track

Please note that we do not alter our data collection and usage practices when we detect a do not track signal.

How do we collect your information?

You directly provide us with almost all the information that will collect except for device information and cookies. We collect information from you in many ways including when you:

Enter information into our booking system;
Provide us with information via telephone, online, email, or website, Platforms or during kinesiology sessions;
Purchase our Services;
Enquire about our Services;
Provide testimonials or feedback;
Fill out our client information forms.

How do we use your information?

We use your personal information to:

  • Provide and administer our Services;
  • Process and manage your bookings and payments;
  • Communicate with you about your appointments and updates;
  • Maintain records of our interactions with you;
  • Respond to your inquiries or requests;
  • Improve our services and website;

We will only use your personal information for the purposes for which it was collected, unless we reasonably consider that we need to use it for another purpose that is compatible with the original purpose. If we need to use your information for an unrelated purpose, we will seek your consent.

Data Security

We take appropriate measures to protect your personal information from unauthorised access, alteration, disclosure, or destruction. We implement industry-standard security practices and regularly review our systems to ensure your data is securely stored.

Please note that the transmission of information via the internet is not completely secure. While we do our best to protect your personal information, we cannot guarantee the security of data transmitted to our website or through electronic communication channels. Any transmission is at your own risk.

Disclosure of your information

We may disclose your personal information to third-party service providers who assist us in operating our business and providing our services, such as payment processors, booking systems, and IT support providers. These service providers are authorised to use your personal information only as necessary to provide their respective services to us.

We may also disclose your information if required to do so by law.

Marketing

You may be asked by us if you want to receive marketing materials. You will always be given the choice whether to receive marketing information from us. If you have previously agreed to us using your personal information for direct marketing purposes, you may change your mind at any time by writing to or emailing us at info@qantumkinesiology.com.

If you have voluntarily provided a testimonial or review on our social media platforms, you understand and agree that your testimonial or review may be used for promotional or marketing purposes by Qantum Kinesiology on our website, social media platforms, advertisements, or any other promotional materials. We may use your testimonial or review in its entirety or in part, and we reserve the right to edit or modify it for clarity, length, or any other necessary purpose.

You retain the right to withdraw your consent for the use of your testimonial or review at any time. To do so, please contact us at info@qantumkinesiology.com. We will promptly remove or anonymise your testimonial or review from our promotional materials, as applicable.

How do we store your data?

We are committed to ensuring that your information is secure. To prevent unauthorised access or disclosure, we have put in place suitable physical, electronic, and managerial procedures to safeguard and secure the information we collect online.

To keep your personal data secure, we have chosen a secure web hosting service, Namecheat which is SSL certificate encrypted.

We also store personal information (except credit card information which is encrypted) on our local secure networks, all of which are password protected.

Data Retention

We retain your data to abide by record keeping health laws for a period of 7 years, after which time it is destroyed or erased.

Payment Information

When you make a booking or purchase a session package on our website, we do not store or retain complete credit card information, such as credit card numbers, expiration dates, or CVV codes. Instead, we rely on the secure payment processing services of our trusted third-party payment processors, Stripe, and PayPal.

Stripe and PayPal handle the collection and processing of payment information on our behalf. When you enter your payment details during the checkout process, the information is securely transmitted directly to Stripe or PayPal. Stripe or PayPal retains and stores your payment information in accordance with their own data security and retention practices. You can review Stripe and PayPal’s privacy policy and terms of service for more information on how they handle and protect your payment information.

Please note that while we do not store credit card information, we may retain certain transaction details provided by Stripe or PayPal, such as the transaction amount, date, and confirmation status, for accounting, record-keeping, and customer service purposes. These stored transaction details do not include sensitive credit card information.

Maintaining data quality and accuracy

It is important to us to maintain the quality of the personal information that we hold. We take reasonable steps to make sure that your personal information is accurate, complete and up-to-date.

If you find that your personal information held by us is not up to date or is inaccurate, please advise us and we will amend it, where appropriate.

Third Party Links

Our Site may contain links to other websites of interest. Once you have used these links to leave our Site, you should note that we do not have any control over that other website. We are not responsible for the privacy practices of other such websites. We encourage our users to be aware, when they leave our Site, to read the privacy statements of each website that collects personal identifiable information.

Data Breach

We take the security of your personal information seriously and have implemented reasonable measures to protect it from unauthorised access, loss, or disclosure. However, in the event of a data breach that compromises the security of your personal information, we will take immediate action to mitigate the impact and comply with applicable laws and regulations.

In the unfortunate event of a data breach, we will:

Promptly assess the extent of the breach: We will conduct a thorough investigation to determine the scope and nature of the breach, identifying the affected systems, data types, and the potential risk to individuals.

Notify affected individuals: If we determine that the data breach poses a significant risk of harm to your rights and freedoms, we will notify you promptly, providing clear and transparent information about the breach, the potential consequences, and the actions you can take to mitigate any potential risks.

Engage relevant authorities: If required by applicable laws and regulations, we will report the data breach to the appropriate supervisory authorities and cooperate fully in their investigations.

Take necessary steps to secure and remedy the breach: We will take immediate action to contain the breach, prevent further unauthorised access, and restore the security and integrity of our systems. This may include, but is not limited to, implementing additional security measures, conducting forensic analysis, and cooperating with law enforcement agencies.

Provide support and assistance: In the event of a data breach, we are committed to providing support and assistance to affected individuals. This may include guidance on steps to protect your personal information, information about available resources for identity theft protection, and any other relevant support measures to help mitigate the impact of the breach.

If you suspect or become aware of any unauthorised access, loss, or disclosure of your personal information, please contact us immediately using the provided contact details.

Please note that while we implement reasonable security measures, no method of data transmission or storage is completely secure. We cannot guarantee the absolute security of your personal information.

By using our website and providing your personal information, you acknowledge and understand the inherent risks associated with data transmission over the internet and agree that we are not liable for any unauthorised access, loss, or disclosure of your personal information beyond our reasonable control.

Your Rights

You have the right to access personal information we hold about you and ask that your personal information be corrected, updated, or deleted. If you would like to exercise this right, please contact us through the contact information below.

We note that we are processing your information to provide our Services to you, or otherwise to pursue our legitimate business interests listed above.

We would like to make sure you are fully aware of all your data protection rights.
You have:

Right to Erasure (Right to be Forgotten): You have the right to request the deletion or removal of their personal data when certain conditions are met, such as when the data is no longer necessary, consent is withdrawn, or processing is based on legitimate interests.

Right to Rectification: If you believe that the personal data we hold about you is inaccurate or incomplete, you have the right to request its correction. You can do so by contacting us using the information provided at the end of this policy.

The right to erasure: You have the right to request us to restrict the processing of your personal data, under certain conditions.

The right to data portability: You have the right to request us to transfer the data that we have collected to another organisation, or directly to you, under certain conditions.

Right to Information and Access: You have the right to be informed about the collection, use, and processing of your personal data. You also have the right to request access to the personal data we hold about you. We may charge you a small fee for this service.

Right to Restriction of Processing: Under certain circumstances, you have the right to request the restriction of the processing of your personal data. If you would like to exercise this right, please contact us using the information provided at the end of this policy.

Right to Data Portability: You have the right to request a copy of your personal data in a structured, commonly used, and machine-readable format. If you wish to exercise this right or request the transfer of your data to another organisation, please contact us using the information provided at the end of this policy.

Right not to be Subject to Automated Decision-making: You have the right not to be subject to decisions based solely on automated processing, including profiling, if these decisions significantly affect them. Some exceptions apply, such as when the decision is necessary for a contract or authorised by law.

Right to Object: You have the right to object to the processing of your personal data based on legitimate interests or for direct marketing purposes. If you wish to object to the processing of your data, please contact us using the information provided at the end of this policy.

Right to Lodge a Complaint: If you believe that your privacy rights have been violated, you have the right to lodge a complaint with the relevant supervisory authority, such as the data protection authority in your country.

If you make a request, we have 30 days to respond to you. If you would like to exercise these rights, please contact us, using the details below.

Changes to our privacy policy

Please be aware that we may change this privacy policy in the future. We may modify this policy at any time, in our sole discretion and all modifications will be effective immediately upon our posting of the modifications on our website or notice board. Please check from time to time to review our privacy policy.

How to contact us

If you have any questions relating to our handling of your personal information or our use of cookies, or if you would like to invoke any of your rights under the APP, GDPR or CCPA regulations, please email at info@qantumkinesiology.com.