You can register as a new patient:
– Online via our secure New Patient Registration Form
– In person using a paper form at the practice

Both forms include a consent section that allows us to collect and use your information to provide medical care. Only authorised staff can access your data.

We collect and store the following types of personal and medical information:
– Name, date of birth, contact details, address
– Medicare and health fund details
– Medical history, current medications, allergies, immunisations
– Family and social history (if relevant)
– Test results, referral letters, scans and imaging
– Notes and treatment details from appointments

We collect your information:
– When you register as a patient
– During appointments and treatment
– When you book online, call us, or contact us electronically
– From other health providers (e.g. hospitals, specialists, labs)
– With your permission, from My Health Record or ePrescriptions

We may also receive information from a guardian or family member if necessary.

We collect your personal and health data to:
– Provide you with safe, accurate medical care
– Coordinate care with other healthcare providers
– Claim from Medicare or your private health fund
– Keep your health records up to date
– Comply with legal, regulatory, or public health obligations
– Send reminders (if you’ve opted in)

We never sell your data or use it for advertising.

We may share your information:
– With other doctors, specialists, or hospitals involved in your care
– With Medicare, DVA, or your health insurer (for claims)
– With IT providers or accreditation bodies who support our systems
– When legally required (e.g. court order or public health reporting)
– If there's a serious risk to your health or safety

We’ll always try to obtain your consent first, unless it’s an emergency or required by law.

We do not send your information overseas unless you have agreed and it is legally permitted.

Digital Records:
– Stored securely using encrypted medical software
– Access is restricted to authorised users
– Our servers are locked, monitored, and maintained by IT professionals
– Protected by firewalls, antivirus software, and regular updates

Paper Records:
– Temporary paper records are stored securely and scanned promptly
– Once scanned, paper is locked away until it is securely shredded
– Long-term paper archives are stored in locked compactus units

We can upload Shared Health Summaries or Event Summaries to your My Health Record, but only with your permission. Your doctor will always discuss this with you first.

You can book appointments or submit forms via our website.

⚠️ For your privacy, please don’t send medical questions or personal info through email or Facebook. These channels are not secure. Always call the practice for anything private or urgent.

Our website may use cookies to understand how visitors use the site (e.g. page visits, navigation). This information is anonymous and helps us improve the user experience.

We do not collect any personal medical information via our website or social media.

You have the right to:
– Request access to your health records (in writing)
– Correct any errors or update your contact details

We aim to respond to all access requests within 30 days. There may be a small fee for
printing or processing large requests.

You can update your information:
– At reception
– By phone: (07) 3281 9133
– By email: enquiries@grms.com.au

If you have any concerns about how your privacy has been handled:

Step 1 – Contact Us:
Practice Manager
Grange Road Medical
92 Grange Road, Eastern Heights QLD 4305
Phone: (07) 3281 9133
Email: enquiries@grms.com.au

Step 2 – Contact OAIC:
Website: www.oaic.gov.au
Phone: 1300 363 992

This Privacy Policy is reviewed every year or whenever there are legal or system changes.

The current version is always available:
– On our website
– At reception (ask our staff)

We welcome your feedback to help us keep improving our care and service.