Vasoflo EECP Therapy
Home · Privacy Policy
Privacy

Privacy policy

How Vasoflo collects, stores and uses personal and health information, including data submitted via the secure referral form.

Last updated: 16 May 2026. This policy is provided for general transparency. A finalised, jurisdiction-specific privacy policy should be reviewed and approved by the practice's legal advisors prior to publication.

Who we are

Vasoflo is a specialist clinic providing Enhanced External Counterpulsation (EECP) therapy in Australia. We collect and handle personal and health information for the purpose of accepting referrals from treating doctors and delivering EECP care to patients.

Information we collect

  • Referrer information: name of the referring doctor, practice/hospital, specialty, provider and AHPRA numbers (if supplied), contact details and preferred communication method.
  • Patient information: identifying details (name, date of birth, contact details, address if provided), Medicare number where supplied, and clinical information submitted as part of the referral or recorded during care.
  • Clinical information: cardiac history, symptoms, medications, investigation results, attached reports and safety screening details.
  • Operational metadata: audit timestamps, submission identifiers, and technical metadata required to operate the referral form securely.

How we collect information

We primarily collect information via the secure referral form on this website, by direct communication with referring doctors, and during clinical assessment and treatment of patients within the clinic.

How we use information

  • To assess clinical suitability for EECP therapy.
  • To deliver and document EECP treatment, including in-session monitoring.
  • To communicate with the referring doctor at key milestones, including end-of-treatment summary.
  • To meet our legal, accreditation and clinical record-keeping obligations.
  • To improve the safety and quality of our service, including audit and clinical governance activities.

How we store and protect information

  • The referral form transmits data over HTTPS to a secure clinical intake endpoint.
  • Patient clinical information is stored in secure clinical record systems, not in plain email.
  • Notification emails sent to clinic staff do not contain patient clinical content — they confirm receipt and reference the submission within the secure system.
  • Access to patient information is restricted to authorised clinical and administrative staff on a need-to-know basis.

Sharing information

  • We share clinical information back to the patient's referring doctor and, where clinically appropriate, with other healthcare professionals involved in the patient's care.
  • We do not sell personal or health information, and we do not share information for marketing purposes.
  • We may disclose information where required by law, regulatory authority, or to prevent a serious threat to life or health.

Cookies and analytics

This website may use a small number of cookies and privacy-respecting analytics for the sole purpose of measuring aggregate site performance. No clinical information is sent to third-party analytics tools.

Your rights

  • Patients have the right to request access to the personal and health information held about them, subject to applicable law.
  • Patients may request correction of information that is inaccurate, out of date or incomplete.
  • Patients can withdraw consent for non-essential communication at any time.

Contact

Privacy enquiries can be directed to the clinic via the details on the Contact page. Where a concern cannot be resolved with the clinic, patients have the right to contact the Office of the Australian Information Commissioner.

Updates to this policy

This policy may be updated from time to time to reflect changes in practice, technology or regulation. Material changes will be highlighted on this page.