Privacy policy

Privacy Policy

Last updated: 21/09/2025

Almost Strong Pty Ltd (“we,” “our,” “us”) is committed to protecting your privacy and handling your personal information in accordance with the Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs).

This Privacy Policy explains how we collect, use, store, and disclose your personal information when you use our website, book services, or purchase products

By accessing our services or website, you agree to the terms of this Privacy Policy.

1. Information We Collect

We may collect the following types of personal information, depending on how you interact with us:

  • Identity & Contact Details: name, date of birth, gender, phone, email, address.

  • Health Information: medical history, treatment notes, rehabilitation goals, insurance/funding details (e.g., Medicare, My Aged Care, DVA).

  • Transaction & Payment Information: billing address, payment card details, payment confirmations, order history.

  • Usage Data: device/browser information, IP address, site interactions, cookies, preferences, and account settings.

  • Communications: information you provide when you email, call, or message us.

2. How We Collect Information

We may collect information:

  • Directly from you (consultations, bookings, emails, forms, online checkout).

  • From referring providers (GPs, specialists, aged care coordinators, NDIS plan managers).

  • Automatically via our website and Shopify (cookies, analytics, order history).

  • From third-party services (Shopify, payment processors, IT support).

3. Why We Collect and Use Your Information

We use your personal information to:

  • Provide physiotherapy and rehabilitation services.

  • Maintain accurate clinical and service records.

  • Process and fulfill online purchases and payments.

  • Send appointment reminders, order updates, and important notices.

  • Improve our website, classes, and customer experience.

  • Comply with legal and regulatory obligations.

  • With your consent, send optional updates or marketing communications (you may opt out anytime).

4. Sensitive Information

Sensitive health information is only collected with your consent and used for purposes directly related to your care, or as required by law.

5. Disclosure of Information

We may share your information with:

  • Health professionals directly involved in your treatment.

  • Funding bodies (e.g., Medicare, My Aged Care, DVA, private insurers).

  • Shopify and service providers (payment processors, IT, cloud storage, shipping/fulfilment).

  • Business or marketing partners for online advertising (via Shopify’s integrated tools).

  • Legal authorities where required by law.

We never sell your personal information.

6. Storage & Security

Your records are stored securely in encrypted systems and/or locked physical files. We take reasonable steps to protect them from misuse, loss, or unauthorised access.

  • Clinical records are retained for at least 7 years (or longer where legally required).

  • Transaction records may be stored by Shopify and its service partners, including in overseas locations.

7. Telehealth & Online Services

If you participate in telehealth or online programs, you acknowledge:

  • Some information may be transmitted over third-party platforms.

  • We use secure, reputable platforms but cannot guarantee absolute security.

8. Your Rights

You may request to access or correct your personal information, or to opt out of communications. Requests can be made at: physio@almoststrong.com.au.

Depending on where you live, you may also have rights to delete, restrict, or port your data, in line with the Australian Privacy Principles and Shopify’s privacy processes.

9. International Transfers

Because our store is powered by Shopify, your personal information may be transferred to servers outside Australia. Shopify uses safeguards such as Standard Contractual Clauses to protect your information.

For details, see Shopify’s Privacy Policy.

10. Third-Party Links

Our website may link to external sites. We are not responsible for their privacy practices and encourage you to review their policies.

11. Children’s Data

Our services are not intended for individuals under 18, and we do not knowingly collect children’s personal information without parental consent.

12. Changes to This Policy

We may update this Privacy Policy periodically. Updates will be posted on our website with the revised date.

13. Contact Us

If you have any questions, concerns, or complaints about how we handle your personal information, please contact us:

📧 physio@almoststrong.com.au