Legal

Privacy Policy

Effective Date: 25 April 2026

1Our Commitment to Your Privacy

Welcome to GPCOMPANION ("we," "us," or "our"). We provide tools to help General Practitioners (GPs) and healthcare professionals create GP Management Plans and Health Assessments. Access to these tools requires a user account and an active subscription following a 2-month free trial period.

Your privacy and the privacy of your patients are of the utmost importance to us. This Privacy Policy explains what personal and anonymised data we collect, why we collect it, how we use it, and how we protect it.

We are committed to complying with the Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs).

2Personal Information We Collect

When you create an account, we collect the following personal information to verify your identity, manage your subscription, and provide access to our platform:

First Name and Last Name
Clinic Name
Clinic Address
Position / Role
Phone Number
Email Address

Your email address is used to verify your account and communicate important subscription and service information. Your phone number and clinic information are collected to help us verify that registrations are genuine and to prevent misuse of the free trial period.

We collect and handle this personal information in accordance with the Australian Privacy Principles. You have the right to access and correct your personal information at any time via your account dashboard.

3Clinical Data — What We Do NOT Collect

Our commitment to clinical confidentiality remains absolute. We are explicit about what we never collect or store:

Patient PII: We do not collect patient names, addresses, Medicare numbers, or any other patient-identifying information.
Protected Health Information (PHI): We do not collect, view, or store any clinical data entered into management plans or assessments — including diagnoses, medications, clinical notes, or any sensitive health information.

All clinical data entered into our tools exists exclusively within your local browser session and is never transmitted to our servers. You can create detailed health assessments and management plans with complete confidence that patient confidentiality is protected at every step.

4Anonymised Usage Data We Collect

In addition to your account information, we collect aggregated and strictly anonymous data to maintain and improve our service. This data cannot be linked to any specific individual.

a) Usage and Engagement Data

Referring source (how you found our website)
Geographic location (country, state/territory, city)
Pages visited, visit duration, and new vs. returning user status

b) Tool Interaction Data

Tool initiation and completion counts
Average time to complete a plan or assessment

c) Technical Data

Device type and web browser
Page load speed and performance metrics

5Subscriptions and Billing

GPCOMPANION operates on a subscription model with a 2-month free trial for new accounts. Following the trial period, continued access requires an active paid subscription.

Subscription payments are processed securely by Stripe, a certified PCI-compliant payment processor. We do not store your credit card or payment details on our servers. All billing information is handled exclusively by Stripe. You can view Stripe's privacy policy at stripe.com/au/privacy.

Your subscription status, plan type, and billing history are stored in our secure database and are accessible at any time from your account dashboard.

6How We Use Your Information

Your personal information is used exclusively for the following purposes:

Creating and managing your user account
Verifying your identity and eligibility for a free trial
Processing and managing your subscription and billing
Sending important account, subscription, and service notifications
Preventing misuse of the platform (e.g., multiple free-trial registrations)
Improving our service through anonymous usage analytics

We do not sell, rent, or share your personal information with third parties for marketing purposes.

7Data Storage and Security

Your account data is stored securely using Supabase, a cloud database platform with industry-standard encryption at rest and in transit. Access to your data is restricted to authorised personnel and systems only.

We retain your personal information for as long as your account is active or as required to fulfil the purposes outlined in this policy. You may request deletion of your account and associated personal data at any time by contacting us.

8Cookies and Tracking Technologies

We use cookies and similar technologies to manage authentication sessions and collect the anonymous usage data described in Section 4. We use Google Analytics for traffic and behaviour analysis. You can view Google's privacy policy at policies.google.com/privacy.

You can refuse cookies via your browser settings, though this may affect certain platform functionality including login sessions.

9Third-Party Services

Supabase — Secure cloud database and authentication infrastructure. supabase.com/privacy
Stripe — PCI-compliant payment processing. stripe.com/au/privacy
Google Analytics — Anonymous website usage analytics. policies.google.com/privacy
Vercel — Website hosting and delivery infrastructure. vercel.com/legal/privacy-policy

10Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify registered users of material changes via email and will post the updated policy on this page with a revised effective date. We encourage you to review this policy periodically.

11Contact Us

If you have any questions about this Privacy Policy or wish to access, correct, or delete your personal information, please contact us via our Contact page.