All Questions Data & Privacy What are my privacy obligations as a health business?
Answering your
legal questions

What are my privacy obligations as a health business?


If you're running a health business, you're likely to be collecting and managing customers' health information. Under Australian privacy laws, health information is a lot more sensitive than standard data. As such, there are additional requirements that apply.

For instance, if your health business is collecting health information, you are legally required to have a Privacy Policy in place in accordance with the Privacy Act 1988 regardless of the small business threshold (that is, if you have an annual turnover of $3 million or more).

The sensitive nature of health information means that your business needs to have well-drafted Privacy Policies, Cookie Policies, NDAs and Terms and Conditions in compliance with privacy laws.

If you're conducting business in the EU, your Privacy Policy will need to be comply with the GDPR.

Rowan is the Marketing Coordinator at Sprintlaw. She is studying law and psychology with a background in insurtech and brand experience, and now helps Sprintlaw help small businesses

Need Legal Help?
Ask Us!

Enter your details to get started

  • This field is for validation purposes and should be left unchanged.

* Proceeding confirms you agree to our Privacy Policy

Your legals made easy

ENQUIRE NOW CALL US 1800 730 617

Hi there!

You're visiting Sprintlaw . Would you like to switch to Sprintlaw ?