Privacy Policy – TrueNorth Assist

1. Introduction

At TrueNorth Assist, we respect your privacy and are committed to protecting your personal information. We collect, store, and manage your information in compliance with the Privacy Act 1988 (Cth), the Australian Privacy Principles (APPs), and the NDIS Quality and Safeguards Framework. This Privacy Policy explains how we collect, use, disclose, and protect your information.

2. Types of Information We Collect

We may collect and hold the following kinds of personal information:

• Identity information: full name, date of birth, address, phone number, email.
• NDIS information: NDIS number, plan details, funding categories, and supports required.
• Health information: disability type, medical history, functional capacity, and support needs (only as relevant to your care).
• Financial information: bank account details (if needed for Plan Management).
• Other information: emergency contacts, guardianship arrangements, feedback, and complaints records.

3. Why We Collect Information

We only collect personal information that is reasonably necessary to:

• Provide Support Coordination, Plan Management, and other agreed services.
• Understand your needs, preferences, and goals.
• Communicate effectively with you, your family, carers, and other providers.
• Comply with NDIS reporting requirements and legal obligations.
• Improve the quality of our services and ensure participant safety.

4. How We Collect Information

We may collect your information directly from you, your plan nominee, guardian, support coordinator, or other service providers. We will always obtain your consent before collecting information from third parties, unless required by law.

5. How We Use and Share Information

Your personal information will only be used or disclosed for the purpose it was collected. We may share information with:

• Support workers, coordinators, or plan managers directly involved in your care.
• Medical or allied health professionals (with your consent).
• The NDIS, NDIA, or NDIS Quality and Safeguards Commission (if legally required).
• External auditors for compliance purposes.

We do not sell or trade personal information under any circumstances.

6. Data Security and Storage

• Records are stored securely in password-protected systems and locked storage.
• Staff are trained in confidentiality, privacy, and secure handling of participant data.
• We take all reasonable steps to protect against misuse, loss, unauthorised access, modification, or disclosure.

7. Access, Correction, and Control

• You have the right to access your personal information at any time.
• You may request corrections if you believe your records are inaccurate or incomplete.
• You can withdraw consent for information sharing at any time.

8. Complaints About Privacy

If you believe your privacy has been breached, contact us immediately. If unresolved, you may lodge a complaint with the Office of the Australian Information Commissioner (OAIC) or the NDIS Quality and Safeguards Commission.

9. Contact Us