Legal

Privacy Policy

Last updated: 18 July 2026

Theraqy Pty Ltd (ABN 68 273 461 223) (“Theraqy”, “we”, “us”) is committed to protecting your privacy. This policy explains how we collect, use, store, and disclose personal information in accordance with the Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs). As an allied health provider we may also handle health information, which is treated as sensitive information under the Act and given a higher level of protection.

1. What we collect

Through this website we may collect:

  • Enquiry details - when you submit the contact form: your name, email address, phone number, the service area you are interested in, your funding type, and anything you write in your message. Please avoid including detailed health information in the message field; we will collect clinical information securely once you become a client.
  • Order details - when you purchase from our shop: the items ordered and delivery details. Card payments are processed by Stripe; we never see or store your full card number.
  • Career enquiries - your name, contact details, and any information you choose to share about your professional background.

This website does not use advertising or analytics cookies. Our hosting provider (Cloudflare) may process technical data such as IP addresses in server logs for security and performance purposes.

2. Why we collect it

  • To respond to your enquiry and provide you with the services or products you request;
  • To process shop orders, arrange delivery, and issue receipts and invoices (including to NDIS plan managers where applicable);
  • To consider expressions of interest in working with us;
  • To comply with our legal and professional obligations as a registered NDIS provider.

3. Who we share it with

We do not sell personal information. We share it only with service providers who help us operate:

  • Stripe - payment processing (your payment details are provided directly to Stripe on their secure checkout page);
  • Resend - delivery of contact-form emails to our practice inbox;
  • Cloudflare - website hosting and security;
  • Government bodies such as the NDIA, or your plan manager, where required to administer your funding and with your consent;
  • Anyone else where required or authorised by law.

Some of these providers process data on servers located outside Australia (for example, in the United States). We take reasonable steps to ensure overseas recipients handle personal information consistently with the APPs.

4. Storage and security

We take reasonable steps to protect personal information from misuse, interference, loss, and unauthorised access, modification, or disclosure, including encrypted (HTTPS) transmission for all website traffic. We keep personal information only as long as it is needed for the purposes above or as required by law, including health-record retention requirements that apply to allied health services.

5. Access, correction, and complaints

You may request access to, or correction of, the personal information we hold about you by contacting us at Theraqy@outlook.com. If you believe we have breached the APPs, please contact us first and we will respond within 30 days. If you are not satisfied with our response, you can complain to the Office of the Australian Information Commissioner (OAIC) at www.oaic.gov.au or by calling 1300 363 992.

6. Changes to this policy

We may update this policy from time to time. The current version will always be published on this page with its “last updated” date.

7. Contact

Privacy Officer, Theraqy Pty Ltd
Email: Theraqy@outlook.com