Praxia
Effective 7 July 2026 · Praxia Clinical Solutions Pty Ltd
Praxia is operated by Praxia Clinical Solutions Pty Ltd (ACN pending — company in incorporation) ("we", "us", "our"). We are committed to protecting your personal information in accordance with the Australian Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs).
This policy explains what personal information we collect, how we use and protect it, and your rights in relation to it.
We collect and hold the following categories of personal information:
From patients (collected by your clinic on our platform):
From clinic staff (collected at account setup):
Automatically collected:
We do not collect health information directly from patients. Health information is entered into the platform by your clinic's authorised staff.
We collect and use personal information for the following purposes:
| Purpose | APP basis |
|---|---|
| Providing the clinical management platform to your clinic | Primary purpose of collection (APP 6.1(a)) |
| Sending appointment reminders and follow-up communications (where your clinic has enabled this) | Directly related to primary purpose; patient consent obtained at booking (APP 6.1(a), APP 7) |
| Maintaining clinical records as required by law | Legal obligation (state and territory medical record retention laws) |
| Billing and invoicing | Primary purpose of collection |
| Platform security and fraud prevention | Legitimate operational interest |
| Improving the platform (de-identified and aggregated data only) | Legitimate interest; no individual identification |
We will not use your personal information for any purpose that is incompatible with the purpose for which it was collected without your consent.
All personal and health information is stored in Australia (Sydney, New South Wales) on infrastructure operated by Fly.io. We do not transfer your personal information outside Australia except as described in section 4.
We protect your information using:
We share personal information only where necessary to provide the platform:
| Recipient | Purpose | Location | Safeguard |
|---|---|---|---|
| GoHighLevel (GHL) | CRM platform — stores Contact and appointment data on our behalf | AU sub-account configuration, but GHL is US-based and data transits/rests on US core infrastructure | APP 8 cross-border disclosure (United States) — GHL's data processing agreement (which commits GHL to handle data per the Australian Privacy Principles, verified 2026-07-04) is in force from account creation; see DPA §5 and sub-processors register |
| Fly.io | Cloud infrastructure and database hosting | Sydney, Australia | Standard contractual terms |
| AWS S3 (Sydney) | Encrypted off-host database backups | Sydney, Australia (ap-southeast-2) | Bucket region-locked; encryption at rest (SSE-AES-256) + S3 Object Lock |
| AWS Bedrock (Sydney) | AI assistance for drafting referral letters — clinical text is sent to Anthropic's Claude model running in the Sydney region | Sydney, Australia (ap-southeast-2) | In-country processing; AWS contractually does not store inputs/outputs or train on them; clinician reviews and approves every draft before send — see § 4.2 |
| Better Stack | Uptime monitoring + log aggregation (system health only — no patient identifiers in log fields) | United States | APP 8 — technical safeguard (no PII in log fields per ADR-0004) applied |
| Sentry | Error tracking (clinical content stripped before transmission) | United States | APP 8 — technical safeguard (PII redaction) applied |
| Google Workspace + Google Meet | Telehealth video consults (video + audio of consult, meeting metadata; no recording) | US / EU routing — see § 4.1 | APP 8 — disclosed; Google Cloud APP whitepaper is the compliance basis |
The full register, including data categories, vendor DPAs, and AU-residency caveats for each entry, is maintained at docs/compliance/sub-processors.md. Any change to the register is made by a tracked PR, not a silent config update.
We do not sell, rent, or trade personal information to third parties for marketing purposes.
We need to be specific about one item in the table above because the trade-off is material.
If your clinic uses our telehealth video consult feature, the video and audio of the consult are carried over Google Meet, which runs on Google Workspace. Google Workspace at our subscription tier (Business Starter) does not pin data to Australia. Video consult content may transit Google's global infrastructure including US and EU regions. Australia is not an available data-region option at this tier.
What this means in practice:
We have chosen Google Meet at v1 because the marginal cost is zero and the recording-disabled default is tier-enforced. We re-evaluate against AU-resident alternatives (e.g. Coviu, Zoom Sydney) when an upgrade trigger arrives — see the sub-processor register for current status.
After a clinical visit is signed off, our platform can generate a first-draft referral letter for the clinician's review. We use Anthropic's Claude model for this, running on AWS Bedrock in the Sydney region.
The trade-off here is the opposite of telehealth — the clinical content stays in Australia.
What we send to the model, what stays in Australia, and what the clinician does:
ap-southeast-2). Clinical content does not leave Australia for this purpose. AWS Bedrock contractually does not store the request or the response, and does not use it to train models. The draft letter that comes back is saved into our Sydney database; nothing about the prompt is retained outside that path.If at any point a future version of the platform changes how AI processes clinical content — for example, a different model, a different region, or a feature that removes the clinician-approval step — we will update this section before that change goes live.
Health information is sensitive information under the Privacy Act. We collect and hold health information only:
Health information is accessible only to authorised staff at the clinic that collected it. Staff at other clinics on the platform cannot access it.
We retain personal information for as long as necessary to fulfil the purpose of collection and to meet our legal obligations:
| Information type | Retention period |
|---|---|
| Clinical records (health information) | 7 years from last entry, or until patient requests deletion (subject to legal obligations) |
| Appointment and visit records | 7 years |
| Financial records | 7 years (tax and accounting obligation) |
| System access logs | 90 days |
| Staff account information | Duration of employment + 7 years |
When your clinic's subscription ends, we will retain your data for 90 days to allow export, then delete it securely. We will provide at least 30 days' notice before deletion.
Under the Australian Privacy Principles, you have the right to:
To exercise these rights, contact us using the details in section 9. We will respond within 30 days.
For patients: Your health records are held by and on behalf of your clinic. To access or correct your clinical records, please contact your clinic directly. We will assist your clinic to respond to access and correction requests.
We are bound by the Notifiable Data Breaches (NDB) scheme under the Privacy Act. If we become aware of an eligible data breach that is likely to result in serious harm, we will:
We maintain an incident response runbook to ensure timely breach assessment and notification.
For privacy enquiries, access requests, corrections, or complaints:
Privacy Officer — Andrew Romano Praxia Clinical Solutions Pty Ltd (in incorporation) Email: [email protected] Phone: 0425 767 671 Address: 16–18 Castlereagh Street, Penrith, NSW, 2750
If you are not satisfied with our response to a complaint, you may contact the Office of the Australian Information Commissioner (OAIC) at oaic.gov.au.
We may update this policy from time to time. Clinics will be notified of material changes by email at least 30 days before they take effect. The current version is always available at https://praxiaclinical.com/privacy.
risk-acceptance decision record). A qualified Australian privacy-lawyer review is a scheduled review trigger before scaling beyond the EMC pilot (§9 there). Pre-incorporation note: until Praxia Clinical Solutions Pty Ltd is registered, the operating legal person is Evolution Medical Care Pty Ltd; confirm the interim-operator framing with your accountant.*
If you are not satisfied with our response to a complaint, you may contact the Office of the Australian Information Commissioner (OAIC) at oaic.gov.au.