Privacy Policy

In this policy, "us", "we", "our", or "I" means Dr Daniel Geilings, trading as Beyond the Consult Pty Ltd, ACN 682 429 625, ABN 78 682 429 625, and being the operator of this website.

Section A of this Policy pertains to this website.

Section B of this Policy pertains to the Practice.

Section C of this Policy is general information applying to our overall practice.

I am bound by the principles contained in the Privacy Amendment (Enhancing Privacy Protection) Act 2012 (subject to any exemptions that apply under that Act).

I may, from time to time, review and update this privacy policy, including taking account of new or amended laws, new technology and/or changes to my operations. All personal information held by me will be governed by the most recently updated policy.

This Privacy Policy was last updated on 8 February 2026.

Section A — Website

1. INFORMATION WE COLLECT

The personal information collected via this website falls into three categories: contact details, click trails, and activity history.

Contact details are collected as supplied by you from time to time. The website currently collects your name and email address only. We do not store credit card information via this website.

Click trails record the paths taken by visitors through the website. This information is generally recorded against IP address and may be possible to correlate by computer.

Activity history consists of enquiries or sign-ups submitted via the website, or offline contact you have with us such as phone calls or emails.

2. HOW WE COLLECT IT

Contact details are collected when supplied by you either via the website or directly to us by other means.

Click trails are recorded by our servers as each request reaches the website. This includes but is not limited to the type of browser you are using; the date and time of your visit; your IP address; the address of the website that referred you to ours; the addresses of pages accessed and any documents downloaded.

Click trails can be correlated over time by the use of cookies as outlined in this policy. In most cases, click trail data is not directly individually identifiable.

Activity history is recorded whenever you undertake an activity such as submitting an enquiry or signing up for updates, and may additionally be recorded by us when you contact us offline.

Online appointment bookings and associated personal information are collected and managed by HealthEngine, a third-party booking platform. HealthEngine's collection and use of your information is subject to its own privacy policy, which can be found on the HealthEngine website.

3. WHY WE COLLECT IT AND HOW WE USE IT

We collect your personal contact details and activity history to respond to requests or queries you raise; to confirm your identity; to keep you informed about practice updates, clinic availability, and other information you have opted in to receive.

We collect click trail data to measure and monitor the performance of our website; to estimate interest in our services; to refine and update our website's content; and to monitor our website for violations of the terms of use or any applicable laws by visitors.

4. HOW WE DISCLOSE IT

We may disclose your personal information to third parties, and you consent to us disclosing your personal information to third parties, under the following circumstances:

1. As part of a sale or transfer of all or part of the practice

2. When explicitly authorised to do so by yourself at the time you supply the information

3. As required or authorised by any applicable law

4. As part of any investigation by us into you or your activity on our website (including to your Internet Service Provider or network administrator)

5. If we have reason to believe that you have committed a breach of any of our terms of use or have been otherwise engaged in any unlawful activity and we reasonably believe that disclosure is necessary (including to the Police or any other enforcement body, or to your Internet Service Provider or network administrator)

6. To lessen or prevent a serious threat to a person's health or safety

5. COOKIES

Cookies are electronic tokens containing small amounts of information that are passed between a web browser and server. They are used to maintain session state between pages or to retain information between visits if you return to the website at a later time.

We use cookies to correlate passive activity tracking data and to support the functionality of the website.

6. OPTING IN AND OUT

You may opt out from the correlation of passive activity data by turning off cookies in your browser. Please note, however, that disabling cookies may result in a reduction of available functionality on our site.

When you supply us with your email address, you may be asked to opt in to receive updates and communications from us.

You will be given the opportunity to opt out from receiving further communications from us in accordance with this policy each time we send you information for which you have opted in. This typically comes in the form of an unsubscribe link in each email.

If you receive any communication purporting to be connected with us or our services that you believe has been sent to you other than in accordance with this policy, or in breach of any law, please contact us immediately as outlined in this policy.

7. INFORMATION MANAGEMENT AND SECURITY

We will take all reasonable steps to ensure that the personal information we hold is not lost, misused, or inadvertently provided to unauthorised third parties.

You acknowledge that the security of communications sent by electronic means cannot be guaranteed. You provide information to us via the internet at your own risk. We cannot accept responsibility for misuse or loss of, or unauthorised access to, your personal information where the security of information is not wholly within our control.

You agree that we are not responsible for the privacy or security practices of any third party and that the collection and use of your information by third parties may be subject to separate privacy and security policies.

If you suspect any misuse or loss of, or unauthorised access to, your personal information, please contact us immediately as outlined in this policy.

Section B — The Practice

1. INTRODUCTION

My principal concern is and always will be the health of patients who visit my practice. A high level of trust and confidentiality is required to ensure the confidence of the patients I serve.

Patients will be assured that:

1. their privacy will be protected when visiting the Practice,

2. the information collected and retained in their records is correct and up to date, and

3. that they can access their information for review.
   

2. ABOUT THE PRACTICE

I operate as a sole medical practitioner, providing general practice services with a focus on sports and musculoskeletal medicine, complex medical care, chronic pain, and chronic fatigue management.

I consult from rooms hired at two separate locations:

• Footscray: 72 Maribyrnong Street, Footscray VIC 3011

• Coburg: Australian Sports Physios, 372 Sydney Road, Coburg VIC 3058
  

These rooms are leased from the respective premises owners. I do not own or operate the buildings in which I consult, and the premises owners are separate entities with their own privacy obligations. I operate independently within my consulting rooms and am solely responsible for the collection, use, and management of your health information.

There is no reception staff at either location. Administrative functions, including appointment management, reminders, and recalls, are handled electronically.

3. HEALTH INFORMATION

I recognise that the information I collect is often of a highly sensitive nature and have adopted the highest privacy compliance standards to ensure personal information is protected.

Personal information collected will include:

1. your name, address, telephone number, email address, and Medicare number,

2. current medications or treatments,

3. previous and current medical history, including, where clinically relevant, a family medical history, and

4. the name of any health service provider or medical specialist to whom you are referred, copies of any letters of referral, and copies of any reports received.

I may access information:

1. provided directly by you,

2. provided on your behalf with your consent,

3. from a health service provider who refers you to me, or from health service providers to whom you are referred,

4. from Government-managed health databases, including but not limited to My Health Record.

4. USE OR DISCLOSURE OF PERSONAL INFORMATION

Personal information collected by me may be used or disclosed:

1. for the purpose advised to you at the time of collection of the information;

2. as required for delivery of health services to you;

3. as required for the ordinary operation of my services (for example, to refer you to a medical specialist or other health service provider);

4. as required under compulsion of law; or

5. where there is a serious and imminent threat to an individual's life, health, or safety; or a serious threat to public health or public safety.

I may also use or disclose personal information for quality assurance, professional development, billing, liaising with government offices regarding Medicare entitlements and payments, and as may be required by my insurers.

5. AI MEDICAL SCRIBE TECHNOLOGY

I use Heidi (provided by Heidi Health) as an AI-powered medical scribe to assist with clinical documentation during consultations. This technology securely processes voice data from the consultation to generate text-based clinical records.

Voice data is processed in real time and is not stored beyond the immediate transcription process. Heidi uses industry-leading security measures to protect data, including encryption in transit and at rest. All data is handled in compliance with applicable Australian privacy laws and regulations.

If you do not wish for AI scribe technology to be used during your consultation, please inform me at the start of your appointment. I will make alternative arrangements for clinical documentation.

6. ELECTRONIC COMMUNICATIONS AND PRESCRIPTIONS

All prescriptions, referrals, pathology requests, and other clinical documents are issued electronically. Paper copies are not available. Electronic prescriptions (eScripts) are sent directly to you via your preferred method through the Helix practice management system.

I may also use or disclose personal contact information (your name, mobile number, and/or email address) to messaging and booking intermediaries to enable effective communication with you. This communication may include appointment reminders, real-time updates about appointment availability, recalls, electronic prescriptions, and practice notifications.

My current messaging and booking intermediaries include:

• Helix (by Medical Director / Telstra Health) — practice management, clinical records, recalls, SMS, email communications, and electronic prescriptions

• HealthEngine — online appointment bookings, automated payments, and patient check-in

Consistent with the requirements noted above, I would generally expect only to disclose personal information to Australian individuals and entities.

7. ACURACY OF YOUR INFORMATION

I am committed to ensuring your information is accurate and have processes in place to maintain this accuracy. If you believe that the personal information I hold about you is inaccurate, please contact me immediately as outlined in this policy.

8. SECURITY OF YOUR INFORMATION

Other than as described in this Policy or permitted under privacy principles, I use my reasonable endeavours to ensure that identifying health information is not disclosed to any person unnecessarily or irresponsibly.

Due to the sensitive nature of the information collected to provide my services, extra precautions are taken to ensure the security of that information. Information is stored electronically. All electronically stored files are password-protected, and regular backups of data are performed.

Should you send me an email containing personal information, you acknowledge that, unless you state otherwise in that email, you will be giving me implicit permission to respond to you via that medium.

9. TRANSFERRING YOUR INFORMATION

Patients have the right to attend a medical practitioner of their choice and are free to leave a practice and attend another if they wish.

There is a professional obligation for a medical practitioner to provide a new treating medical practitioner with all of the information needed to take over a patient's care. This is usually done by the patient completing a transfer-of-file form and producing an original source of identification.

When a patient requests that their health records be transferred to another medical practitioner, I have an obligation to provide a copy or summary of the patient health record in a timely manner to facilitate ongoing care. It may be necessary to charge an administrative fee for the work involved in providing this copy or summary.

Should a patient request that their health records be transferred, for legal reasons, I retain the original record and provide the new medical practitioner with a summary or a copy.

10. PERIOD FOR WHICH INFORMATION IS RETAINED

I keep health information for a minimum of 7 years from the date of last entry in the patient records, unless the patient is or was a child, in which case the record must be kept until the patient attains or would have attained 25 years of age.

11. SURVEILLANCE AT PRACTICE PREMISES

The premises from which I consult are equipped with video surveillance in and around common areas, including waiting rooms and building entry points. This surveillance is operated and managed by the respective premises owners — not by me — for the purposes of ensuring the safety and security of all occupants and visitors.

I do not control, access, or store any CCTV footage from these premises. Any enquiries regarding surveillance footage should be directed to the relevant premises owner. For further information, please contact me and I can direct you to the appropriate party.

Section C — General

1. GAINING ACCESS TO YOUR INFORMATION

You have the right (excluding exceptions outlined in the Privacy Amendment (Enhancing Privacy Protection) Act 2012 and other applicable laws) to seek access to and update or correct the personal information I hold about you. Access can be denied when letting a patient see their records would pose a serious threat to the patient's life or health, or the life or health of someone else.

If you make an access request, I will ask you to verify your identity. I may charge a fee to cover the costs of meeting your request. If you would like to seek access to personal information I hold about you, please contact me as outlined in this policy.

2. HOW TO CONTACT US

If you have any questions or complaints about how I collect, use, disclose, manage, or store your personal information, or would like to request access or changes to the information I hold, please contact me via the Contact page on my website.

Dr Daniel Geilings
Beyond the Consult Pty Ltd
drdanielgeilings.com.au