Skip to main content

Privacy Policy

Your privacy is fundamental to our mission. Learn how we protect your personal information and ensure compliance with Australian privacy laws.

Last updated: December 15, 2024

Our Privacy Principles

These core principles guide how we handle your personal information

Data Minimization

We only collect information that's necessary for providing our NDIS services.

Secure Storage

Your data is encrypted and stored using bank-grade security measures.

Transparency

We're clear about what data we collect and how it's used.

User Control

You have full control over your personal information and can access it anytime.

1. Information We Collect

Personal Information

  • Name, email address, phone number, and postal address
  • NDIS participant number and plan information
  • Banking and payment information for plan management services
  • Accessibility preferences and accommodation needs

NDIS-Related Information

  • Current NDIS plan details and funding allocations
  • Service provider information and transaction records
  • Goal progress and outcome measurements
  • Support coordination and case management notes

Technical Information

  • Device information, IP address, and browser type
  • Usage patterns and platform interaction data
  • Accessibility settings and preferences
  • Error logs and performance metrics

2. How We Use Your Information

NDIS Plan Management: To manage your NDIS funding, process payments to service providers, and maintain accurate financial records.
Service Provision: To connect you with appropriate service providers, track goal progress, and coordinate support services.
Platform Improvement: To enhance our accessibility features, improve user experience, and develop new functionality.
Compliance & Reporting: To meet NDIS Quality and Safeguards requirements and provide required reporting to regulatory bodies.

3. Information Sharing and Disclosure

Important: We never sell your personal information to third parties. Any sharing is strictly limited to providing NDIS services or meeting legal requirements.

We may share your information with:

  • NDIS Service Providers: To facilitate service delivery and payment processing
  • NDIA and Regulatory Bodies: As required for compliance and reporting obligations
  • Healthcare Professionals: When necessary for care coordination (with your consent)
  • Legal Authorities: When required by law or court order
  • Trusted Service Partners: Such as secure payment processors and cloud infrastructure providers (under strict data protection agreements)

4. Data Security

We implement comprehensive security measures to protect your personal information:

Technical Safeguards

  • 256-bit SSL encryption for data transmission
  • AES-256 encryption for data storage
  • Multi-factor authentication for all accounts
  • Regular security audits and penetration testing

Administrative Safeguards

  • Staff background checks and security training
  • Role-based access controls
  • Incident response and breach notification procedures
  • Regular backup and disaster recovery testing

5. Your Rights

Under Australian privacy law, you have the following rights regarding your personal information:

Access

Request a copy of the personal information we hold about you

Correction

Request correction of inaccurate or incomplete information

Deletion

Request deletion of your personal information (subject to legal requirements)

Portability

Request transfer of your information to another service provider

To exercise any of these rights, contact our Privacy Officer at [email protected]

6. Contact Information

If you have questions about this privacy policy or our privacy practices, please contact us:

[email protected]
02 8338 8900
Privacy Officer
MyMoney NDIS Services
Level 10, 123 Collins Street
Melbourne, VIC 3000