Privacy Policy
Collection, Use and Protection of Personal Information
Cassandra Hilton · BHSc Naturopath · ATMS Accredited
cassandrahilton.com · Effective: June 2026
This Privacy Policy explains how Cassandra Hilton (ABN) collects, uses, stores, discloses and protects your personal information. We are committed to handling your personal information in accordance with the Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs).
1. Who We Are
Cassandra Hilton Health and Wellness is a naturopathic practice operated by Cassandra Hilton, BHSc Naturopath, ATMS Accredited. We operate from 10 Yirawala Street, Ngunnawal ACT 2913 and via cassandrahilton.com.
Contact for privacy matters: health@cassandrahilton.com · +61 402 206 066
2. What Personal Information We Collect
2.1 Health information (sensitive information)
As a healthcare provider, we collect sensitive health information including:
— Full name, date of birth, contact details
— Health history, current and past medical conditions
— Medications, supplements and treatments
— Pathology results and specialist reports
— Menstrual cycle, reproductive and fertility information
— Mental health history and current mental health status
— Dietary habits, lifestyle information and family health history
— Genetic testing results where provided
This information is collected directly from you in consultation intake forms, during consultations, and via email or phone communication.
2.2 General personal information
We also collect general personal information including:
— Name, email address, phone number and postal address
— Payment information (processed securely through Cliniko and Stripe — we do not store card details)
— Website usage data (via cookies — see Section 8)
— Communications between you and this practice via email, phone or online form
3. Why We Collect Your Information
We collect and use your personal information for the following purposes:
1. To provide naturopathic consultations and clinical care.
2. To develop and review your treatment plan and health protocols.
3. To refer you to other healthcare providers where clinically appropriate.
4. To communicate with you about your health care, appointments and results.
5. To process payments and maintain billing records.
6. To send appointment reminders via Cliniko (you may opt out).
7. To comply with legal and professional obligations, including ATMS professional standards.
8. To send educational communications and programme updates (only where you have opted in).
4. How We Store Your Information
Client health records are stored securely within Cliniko, a cloud-based practice management system. Cliniko is hosted on servers located in Australia and complies with Australian privacy law. Client records are retained for a minimum of 7 years from the date of last treatment, or until a minor client turns 25, in accordance with Australian professional standards.
Email communications are stored within our business email system. We use reasonable technical and organisational safeguards to protect your information against unauthorised access, disclosure, loss or misuse.
Programme participant data is stored within our course platform (Podia or Kajabi). These platforms operate under their own privacy policies, which you should review on enrolment.
5. Who We May Share Your Information With
We will only share your personal information in the following circumstances:
1. With other healthcare providers involved in your care (e.g. your GP, specialists) — with your consent, or where clinically necessary.
2. With pathology laboratories when requesting testing on your behalf.
3. With our practice management software provider (Cliniko) and payment processor (Stripe) for the purposes of booking and billing management.
4. As required by law, court order, or regulatory requirement.
5. With professional indemnity insurers, in the event of a claim.
We do not sell, trade or rent your personal information to third parties. We do not share your health information with marketing platforms without your explicit consent.
6. Your Rights
Under the Privacy Act 1988, you have the right to:
— Access the personal information we hold about you
— Request correction of any information that is inaccurate, incomplete or out of date
— Make a complaint if you believe your privacy rights have been breached
— Withdraw consent to marketing communications at any time (unsubscribe links are included in all emails)
To request access to or correction of your personal information, contact health@cassandrahilton.com. We will respond within 30 days. In some circumstances, a fee may be charged for providing access to records (reflecting the reasonable cost of retrieval).
7. Complaints
If you believe your privacy has been breached, please contact us first at health@cassandrahilton.com so we can attempt to resolve your concern. If you are not satisfied with our response, you may lodge a complaint with the Office of the Australian Information Commissioner (OAIC) at oaic.gov.au or by calling 1300 363 992.
8. Website Cookies
cassandrahilton.com uses cookies to improve website functionality and analyse traffic patterns. Cookies do not collect personal health information. You may disable cookies in your browser settings; however, some website features may not function correctly without them. Third-party analytics services (such as Google Analytics) may be used; their privacy policies govern the use of data they collect.
9. Digital Programme Participants
If you enrol in The Skin From Within Blueprint™ or any other digital programme, your enrolment data (name, email, programme progress) is stored within our course platform. This data is used to provide programme access, send course communications and track completion for certification purposes. Programme participant data is not shared with third parties without consent.
10. Changes to This Policy
We may update this Privacy Policy from time to time to reflect changes in law, technology or our practices. The current version will always be published at cassandrahilton.com/privacy-policy. We encourage you to review this policy periodically.
11. Contact for Privacy Enquiries
Privacy Officer: Cassandra Hilton
Email: health@cassandrahilton.com
Phone: +61 402 206 066
Address: 10 Yirawala Street, Ngunnawal ACT 2913
This Privacy Policy was last reviewed June 2026 and complies with the Privacy Act 1988 (Cth) and the Australian Privacy Principles. ABN [YOUR ABN].