Privacy Policy

Effective date: 10 September 2025

Introduction

Dr J Clinics (“we”, “us”, “our”) is committed to protecting your privacy. We handle personal information in line with the Privacy Act 1988 (Cth) and the Australian Privacy Principles. This policy explains what we collect, how we use it, who we share it with, and your rights.

What we collect

We only collect information reasonably necessary to provide cosmetic and aesthetic services (and other treatments) and to run our clinic. This may include:

  • Identification and contact details (name, email, phone) when you enquire or complete website forms.

  • Booking details (appointment time, service, preferences) when you book online via Acuity Scheduling.

  • Marketing details (name, email) if you subscribe to our newsletter via Squarespace.

  • Payment details when purchasing services or gift cards online. Payments are processed by Stripe; we do not store full card numbers.

  • Health information (medical history, medications, allergies, treatment notes) provided via intake forms and during consultations so we can deliver safe, appropriate care.

  • Website usage data collected via cookies and similar technologies (see “Cookies and tracking” below).

If you choose not to provide certain information, we may be unable to deliver requested services or ensure treatment safety.

Sensitive health information

We may collect sensitive health information to assess treatment suitability and provide safe care. We do not collect this without your consent unless permitted by law (e.g., an emergency). Health information is used only for your care, stored securely, and accessed only by authorised personnel involved in your treatment.

How we use personal information

  • Provide services and care: schedule and conduct appointments, assess treatment suitability, deliver treatments, and maintain clinical records.

  • Communicate with you: confirmations, reminders, follow-ups, and responses to enquiries.

  • Process payments: complete transactions for services and gift cards via Stripe.

  • Marketing (with consent): send newsletters and updates if you opt in; you can opt out at any time.

  • Improve our services: analyse website and service use to enhance user experience and offerings.

  • Legal and safety obligations: comply with laws, respond to lawful requests, and address fraud, security, or health/safety risks.

Disclosure of personal information

We do not sell your personal information. We share it only as needed to deliver our services or meet legal obligations, including with:

  • Acuity Scheduling (Squarespace) to manage online bookings.

  • Squarespace to host the website, manage web forms, and send newsletters.

  • Stripe to securely process payments.

  • IT and professional service providers (e.g., secure hosting, accountants) under confidentiality obligations.

  • Healthcare providers (with your consent) for referrals or coordinated care.

  • Authorities when required or authorised by law, or to address serious threats to health or safety.

Some providers may process data overseas (e.g., United States). We take reasonable steps to ensure overseas recipients protect your information appropriately.

Cookies and tracking

Our website uses cookies and similar technologies to operate the site, remember preferences, and analyse usage. We also use tools such as Google Analytics and Facebook Pixel to understand site performance and the effectiveness of our advertising. These tools may collect device and usage data (e.g., IP address, pages visited, actions taken) which is generally aggregated or pseudonymised. We use this information to improve the site and our marketing.
By using our website with cookies enabled, you consent to this use. You can control cookies through your browser settings; disabling cookies may affect site functionality. You can also adjust Google Analytics and Facebook ad preferences using the tools they provide.

Data security and storage

We use appropriate technical, administrative, and physical safeguards to protect personal information, including encryption in transit (HTTPS/SSL), secure systems, access controls, and staff confidentiality obligations. Health records are accessible only to authorised clinical staff. We retain information only as long as necessary for our functions or as required by law, then securely destroy or de-identify it. We do not store full payment card details; Stripe handles payment data to PCI-DSS standards.

Access and correction

You may request access to the personal information we hold about you and request corrections if it is inaccurate, out-of-date, or incomplete. We will verify your identity before releasing information and respond within a reasonable time. In rare cases allowed by law, we may refuse access (e.g., where providing access would impact another person’s privacy or pose a serious threat). If we refuse, we will explain why.

Your choices

  • Marketing: unsubscribe anytime using the link in our emails or by contacting us.

  • Cookies: control or block cookies via your browser settings.

  • Consent: you may withdraw consent you have given for specific uses or disclosures (for future use).

Contact us

If you have questions, requests, or complaints about privacy, please contact:
Email: info@drjclinics.com.au
Postal: Dr J Clinics, Level 1, Kiaora Place, 451 New South Head Road, DOUBLE BAY NSW 2028
Phone: 0452 108 308

We will investigate and respond within a reasonable time. If you are not satisfied with our response, you may contact the Office of the Australian Information Commissioner (OAIC) at www.oaic.gov.au or 1300 363 992.

Changes to this policy

We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated effective date. Your continued use of our website or services after updates indicates acceptance of the revised policy.