MediPlugBack to Home
Privacy Center

Privacy Policy

At MediPlug, we are committed to protecting your personal and health information. Our policy outlines how we handle your data with the highest security standards.

🟢

Privacy at a Glance

We know privacy matters—especially in healthcare. Here’s a simple summary of how MediPlug handles your data:

What we collect

We collect basic personal details like:
  • Name
  • Date of birth
  • Phone number
We also collect limited app usage data.

Health information

  • We do not store your health records
  • Any health information is securely accessed in real-time from your practice’s system

Location

  • We do not track you continuously
  • We only check your location when you check in, to confirm you're near the practice

Security

  • Encryption (TLS & AES-256)
  • Secure login with OTP verification
  • Systems certified by a CREST-certified security company

AU Data storage

All data is stored securely in Australia.

What we don’t do

  • We do not sell your data
  • We do not store sensitive health information

Data retention

We only keep your data as long as necessary or required by law.

Your rights

  • Access your data
  • Request corrections
  • Contact us anytime for help

Support

  • Available via app or website
  • We usually respond within 48 hours (weekdays)

👉 For full details, read the legal policy below.

⚖️

Full Privacy Policy

1Introduction

DigitalTab Pty Ltd (“we”, “us”, “our”) operates MediPlug which is designed in line with the Australian Privacy Act and follows key Australian Privacy Principles (APPs), ensuring personal information is handled securely and responsibly.

2About MediPlug

MediPlug is a digital platform that enables interaction between patients and healthcare practices, including:

  • Patient mobile applications
  • Practice Surgery Admin Portal

3Types of Users

Patients

Individuals use MediPlug to interact with their healthcare providers.

Practice Staff

Authorised personnel managing MediPlug settings through the Surgery Admin Portal.

4Personal Information We Collect

We may collect:

Personal Information

  • First name and last name
  • Date of birth
  • Phone number

Usage & Technical Data

  • Device and app usage information
  • System logs and interaction data

Location Data

  • Collected only at the time of check-in
  • Used to verify proximity to a healthcare practice
  • Not continuously tracked or stored

5Health Information

MediPlug does not store sensitive health information.

Health-related data:

  • Is retrieved in real-time from the healthcare practice’s system
  • Remains under the control of the healthcare provider

6How We Collect Information

  • Directly from users
  • From healthcare practices for verification
  • Automatically through system usage

7Identity Verification

We use a two-step verification process:

  • Matching personal details (name and date of birth)
  • One-time password (OTP) sent to the registered phone number

8Use of Personal Information

We use information to:

  • Provide and operate MediPlug
  • Facilitate communication with healthcare providers
  • Verify identity
  • Improve platform functionality
  • Meet legal and regulatory obligations

We do not sell personal or health information.

9Disclosure of Information

We may disclose personal information:

  • To the relevant healthcare practice
  • To service providers supporting our platform
  • Where required by law

All third parties are bound by confidentiality and privacy obligations.

10Data Storage and Security

All production systems:

  • Are hosted in Australia
  • Store data within Australian infrastructure

Security measures include:

  • Encryption in transit (TLS)
  • Encryption at rest (AES-256)
  • Access control and authentication systems
  • Ongoing monitoring and security reviews

MediPlug has undergone security assessment by a CREST-certified security company, aligning with recognized security standards.

11Data Retention

We retain personal information:

  • Only as long as necessary to deliver services
  • Or as required by applicable laws

12Data Breaches

In the event of a data breach likely to cause serious harm, we will:

  • Investigate and contain the breach
  • Take corrective action
  • Notify affected individuals and the Office of the Australian Information Commissioner (OAIC) as required under the Notifiable Data Breaches scheme

13Your Rights

You have the right to:

  • Access your personal information
  • Request corrections
  • Make a privacy complaint

Requests will be handled within a reasonable timeframe.

14Contact & Complaints

You can contact us via:

  • MediPlug app support
  • Website contact form
  • Email support

We aim to respond within 48 hours during weekdays.

If you are not satisfied with our response to your privacy concern or complaint, you may contact the Office of the Australian Information Commissioner.

15Updates to This Policy

We may update this Privacy Policy from time to time. Updates will be published on our website and/or app.