Last Updated: August 2018
Ausmed is bound by the Australian Privacy Principles contained in the Privacy Act, and observes applicable principles of the GDPR.
What is GDPR and who does it apply to?
The GDPR is EU regulation designed to protect the privacy of EU citizens and impacts all organisations that process the personal data of such citizens, regardless of whether an organisation itself is based in the EU.
The GDPR describes different requirements depending on how an organisation handles data subjects' personal data.
"Data Controllers" are businesses that collect customer data and also decide how, when and why that customer data is processed.
"Data Processors" are businesses that carry out the processing of customer data on behalf of a Data Controller.
Ausmed is a Data Controller in our relationship with our own customers.
Ausmed's GDPR compliance
We are committed to protecting and adhering to the appropriate use of personal data. Ausmed has long exceeded the requirements of the Australian Privacy Principles, by which we are bound, and has further improved its policies and procedures in order to comply with the GDPR.
Below is an overview of several key things we've put in place to ensure such compliance.
Third Party Vendors
Internal Data Policy
We maintain an internal Data Policy that outlines the process our team should follow pertaining to data and privacy matters. We have updated this document in response to the GDPR and other relevant data privacy regulations.
Data Subject Rights in our role as Controller
If you are a customer of Ausmed based in the EU, you should be able to access, update, retrieve and remove your own personal data.
We are here to assist
We take data privacy seriously and think the GDPR is a great step forward for data subjects. If you have any questions regarding GDPR or data privacy, please don't hesitate to email us at firstname.lastname@example.org.
© 2019 Ausmed Education Pty Ltd. All Rights Reserved.