Every piece of data, accounted for
The plain-language version of our privacy practices. What we collect, where it’s stored, who can access it, how long we keep it — anchored to specific Australian laws and named data systems. For the full legal version, see the Privacy Policy.
Clinical data
What we collect to deliver care
Australian Privacy Principle 3 requires us to only collect personal information that is reasonably necessary for the service. Below is everything in our clinical scope. Nothing more.
Name, date of birth, Medicare or IHI number, contact details
Sent to AIR by lawRequired by law to identify you in the Australian Immunisation Register (AIR) and the pharmacy clinical record.
Stored at: Pharmacy clinical system + AIR (Services Australia)
Pre-vaccination screening answers
Pharmacy recordRequired by the Australian Immunisation Handbook before any dose. Documents that contraindications were checked.
Stored at: Pharmacy clinical system only
Vaccine administered + batch + site + date
Sent to AIR by lawSubmitted to the AIR within 24 hours by law (Australian Immunisation Register Act 2015). Builds your national immunisation record.
Stored at: AIR (Services Australia) + pharmacy clinical system
Post-vaccination observation notes
Pharmacy recordConfirms the 15-minute observation occurred. Records any adverse event noticed during observation.
Stored at: Pharmacy clinical system; SAFEVAC if an adverse event occurs
Sensitive health history you choose to share
Stays with usOnly collected if it affects clinical care (e.g. immunocompromised status for vaccine choice).
Stored at: Pharmacy clinical system only — never shared without your specific consent
Analytical data
What we collect to improve the site
Three principles: opt-in by default, no individual profiles, never anything that identifies you. The cookie banner is the gate — until you accept “all”, the analytics library never loads.
Anonymous pageview events (PostHog)
Anonymous, opt-inHelps us understand which pages are useful so we can improve them. Person profiles are off — no individual tracking.
Stored at: PostHog (US cloud) — only after you accept all cookies
Core Web Vitals + pageviews (Vercel Analytics + Speed Insights)
Anonymous, opt-inPrivacy-friendly performance monitoring. No cookies, no fingerprinting, no cross-site tracking.
Stored at: Vercel (US) — automatically on production deployments
IP address (transit only)
Anonymous, opt-inRequired by web protocols to deliver pages to your browser. Logged briefly by Vercel for abuse prevention; not used for tracking.
Stored at: Vercel edge logs
Retention
How long we keep it
Retention periods aren’t our choice — they’re set by state and federal law. The shortest retention permitted is what we use.
| Data | Period | Legal basis |
|---|---|---|
| Adult clinical records (vaccination + screening) | 7 years from last entry | Health Records Act 2001 (Vic) s.20 |
| Paediatric clinical records (under-18 at time of care) | Until the patient turns 25, or 7 years from last entry — whichever is later | Health Records Act 2001 (Vic) s.20(2) |
| AIR record | Indefinite — your national lifetime immunisation record | Australian Immunisation Register Act 2015 |
| PostHog anonymous events | Rolling 12 months | Our retention policy; PostHog allows configurable retention |
| Vercel edge logs (IP for abuse prevention) | ~30 days | Vercel platform default |
| Booking system records (Priceline) | Per Priceline's privacy policy | Bookings are completed on the Priceline platform — Priceline is the data controller for booking data |
Your rights
What you can do with your data
Under the Privacy Act 1988 (Cth) and the Health Records Act 2001 (Vic) you have specific, enforceable rights. Here’s how to use each one.
Access your record
Ring the pharmacy on (03) 9364 7133 or email info@immunisationhub.au. We provide a copy within 30 days at no cost. For your AIR record, download the Immunisation History Statement from myGov instantly.
Correct your record
If something in our clinical record is wrong, we will correct it on request and confirm what we changed. AIR corrections go through Services Australia (1800 653 809) — we can help you with the call.
Get a copy to take elsewhere
Switching to another provider? We can give you a portable summary of your clinical record (vaccinations, screening notes, observation notes) at no cost.
Opt out of analytics
Use the cookie banner at the bottom of any page. Choose "Essential only" — PostHog never loads, no events are sent. You can also click "Manage cookies" later to change your mind.
If we don’t resolve a privacy complaint to your satisfaction, you can escalate to the Office of the Australian Information Commissioner (OAIC) for federal privacy matters, or to the Health Complaints Commissioner (Vic) for Victorian health-information matters.
Processors
Every third-party that touches your data
The complete list. If a third-party isn’t here, your data isn’t with them.
| Processor | Purpose | Country |
|---|---|---|
Services Australia (AIR) Their privacy policy | National immunisation register — required by law | Australia |
Pharmacy clinical system | Local clinical record | Australia (on-premise) |
Priceline Pharmacy booking portal Their privacy policy | Online appointment booking | Australia |
PostHog (Analytics) Their privacy policy | Anonymous pageview metrics — opt-in only | United States |
Vercel (Hosting + Analytics) Their privacy policy | Website hosting, CDN, privacy-friendly analytics | United States |
Google Translate (when you use the translate button) Their privacy policy | On-demand page translation in your browser | United States |
TIS National (when you ring for an interpreter) Their privacy policy | Free Commonwealth interpreter service | Australia |
Privacy that fits on one page
For the formal version with the Privacy Act sections cited, see the Privacy Policy. For the safety side of this picture, see the Quality and safety framework.