Privacy Policy

Last updated 19 April 2026

ClinicForce (“we”, “our”, “us”) is committed to protecting your personal information in accordance with the Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs). This policy explains what we collect, how we use it, and your rights.

1. Who we are

ClinicForce is the business name of ACN 692 724 584 Pty Ltd, an Australian private company providing AI front desk services to healthcare clinics.

  • Business name: ClinicForce
  • ABN: 43 692 724 584
  • Registered in: New South Wales, Australia
  • Privacy contact: admin@clinicforce.io

2. What information we collect

From clinics (our customers): business name, contact details, billing information, clinic configuration, and staff account details.

From callers (our customers' clients): name, phone number, reason for call, call audio, transcripts, and structured summaries generated during the call. For veterinary clinics this may include pet name, species, breed, and symptoms. For other verticals, limited clinical context relevant to triage.

3. How we use your information

  • To answer calls on behalf of our customer clinics
  • To generate summaries and handover notes
  • To provide dashboards, reporting, and analytics to our clinic customers
  • To send service-related communications
  • To comply with legal obligations

We do not sell your information. We do not use your data to train public AI models.

4. Who we share it with

We share information with a small set of named sub-processors. See our Trust page for the current list.

Our sub-processors are bound by written agreements requiring APP-equivalent protection.

We do not disclose personal information to advertisers or data brokers.

5. Cross-border disclosure

Some sub-processors are located outside Australia (primarily the United States). We take reasonable steps under APP 8 to ensure overseas recipients handle personal information consistent with the APPs.

6. How we protect your information

  • TLS 1.2+ in transit, AES-256 at rest
  • Row-level security at the database layer
  • Two-factor authentication on staff accounts
  • Access logging and review
  • Hosted on SOC 2 Type 2 certified infrastructure (AWS Sydney, via Supabase)

7. How long we keep your information

We retain your information for as long as you're a customer, plus 30 days after cancellation for deletion (backups overwritten within a further 90 days).

Certain records may be retained longer where required by law.

8. Your rights under the APPs

  • Access: you may request access to personal information we hold about you.
  • Correction: you may request correction of inaccurate information.
  • Deletion: you may request deletion of your information (subject to legal retention requirements).
  • Complaints: you may complain to us, and if unresolved, to the Office of the Australian Information Commissioner (OAIC).

To exercise any of these rights, email admin@clinicforce.io.

9. Notifiable Data Breaches

We comply with the Notifiable Data Breaches (NDB) scheme under Part IIIC of the Privacy Act 1988. In the event of an eligible data breach, we will notify affected individuals and the OAIC as required by law.

10. Changes to this policy

We may update this policy from time to time. Material changes will be communicated to customers. Continued use of ClinicForce after changes constitutes acceptance.

11. Contact us