This document sets out the privacy policy of Cardionexus Group Pty Ltd ACN 679 363 896 and all its related entities, including subsidiaries (collectively referred to as the ‘CardioNexus Group’) (referred to in this privacy policy as ‘Cardionexus’, ‘we’, ‘us’, or ‘our’).

The Privacy Act 1988 (Cth) (Privacy Act) requires entities bound by the Australian Privacy Principles to have a privacy policy. We take our privacy obligations seriously and we’ve created this privacy policy to explain how we store, maintain, use and disclose personal information.

By providing personal information (including sensitive information) to us, you consent to our storage, maintenance, use and disclosing of personal information in accordance with this privacy policy.

We may change this privacy policy from time to time by posting an updated copy on our website and we encourage you to check our website regularly to ensure that you are aware of our most current privacy policy.

TYPES OF PERSONAL INFORMATION WE COLLECT

The personal information we collect may include the following:

• name
• mailing or street address
• email address
• telephone number and other contact details
• date of birth
• credit card or other payment information
• sensitive information (such as health information) as set out below
• information about your business or personal circumstances
• information in connection with client surveys, questionnaires and promotions
• your device identity and type, I.P. address, geo-location information, page view statistics, advertising data and standard web log information
• information about third parties
• any other information provided by you to us via our website or our online presence, or otherwise required by us or provided by you.

HOW PERSONAL INFORMATION IS COLLECTED

We will collect your personal information in a lawful and fair way. We will only collect your personal information where you have consented to it, or otherwise in accordance with the law.

How we collect information from you

We may collect personal information where you:

• when you interact with us electronically or on the phone
• when you provide feedback
• contact us through our website
• when you enter information onto our software application or web portal
• when you engage our services
• submit any of our online inquiry forms
• communicate with us via email, telephone, SMS, social applications (such as LinkedIn or Facebook) or otherwise
• interact with our website, social applications, services, content and advertising
  
  

How we collect information from third parties

Where possible, we collect your personal information directly from you. However, there may be occasions when we collect personal information (including sensitive information) about you from someone else. For example, where we receive your information from one of our clients to provide our services on their behalf, such as your health care provider.

How you provide information for someone else

If you are providing personal and/or sensitive information on behalf of someone else, you must have the consent of that person to provide their personal and/or sensitive information to us to be collected, used, and disclosed in accordance with this privacy policy. This includes where you are a NDIS participant’s nominee, support coordinator, plan manager or representative. We reserve the right to request evidence of this consent.

How we collect information from cookies

We may also collect personal information from you when you use or access our website, software application or our social media pages. This may be done through the use of web analytics tools, ‘cookies’ or other similar tracking technologies that allow us to track and analyse your website usage. Cookies are small files that store information on your computer, mobile phone or other device and enable and allow the creator of the cookie to identify when you visit different websites. If you do not wish information to be stored as a cookie, you can disable cookies in your web browser.

Information We Collect Through Your Use of the App

When you use our software application, we may collect details such as your device’s unique ID, IP address, operating system, browser type, and usage patterns. This data is aggregated to help us understand how users interact with the app and improve our services.

Automatic Data Collection in App

Our app may automatically gather certain technical details, such as your device type, unique ID, IP address, operating system, browser type, and usage patterns. This helps us monitor performance and enhance user experience.

USE OF PERSONAL INFORMATION

We collect and use personal information for the following primary purposes:

• to provide our services or information to you
• for record keeping and administrative purposes
• to provide information about you to our contractors, employees, consultants, agents or other third parties for the purpose of providing services to you
• to improve and optimise our service offering and customer experience
• to comply with our legal obligations, resolve disputes or enforce our agreements with third parties
• to send you administrative messages, reminders, notices, updates, security alerts, and other information requested by you; and
• to consider an application of employment from you.

We may also use your personal information for:

• secondary purposes closely related to the primary purpose, in circumstances where you would reasonably expect such use
• such purposes where we reasonably believe that use of your personal information is necessary to lessen or prevent a serious threat to the life, health or safety of any individual, or to public health or safety, and it is unreasonable or impracticable to obtain your consent
• any other purpose for which we receive consent from you
• any other purpose which is permitted or required under applicable privacy laws.

HOW WE DISCLOSE YOUR PERSONAL INFORMATION

We respect your privacy, and we will take reasonable steps to keep your personal information confidential and protected. We may disclose your personal information to:

• your health care providers
• our professional advisors such as lawyers, accountants and auditors
• our related entities
• any third parties you have consented personal information to be disclosed to.

We may also disclose personal information to third party contractors as required for us to provide our services to you, such as cloud-service providers, IT professionals, marketing agencies and debt collection agencies.

We take care to work with such third parties who we believe maintain an acceptable standard of data security and require them not to use your personal information for any purpose except for those activities we have asked them to perform on our behalf.

We will not otherwise disclose your personal information unless:

• you have consented to us disclosing your personal information for particular circumstances
• as needed in an emergency or in investigation suspected criminal activity
• we are required to disclose under a subpoena, court order or other mandatory reporting requirements
• we reasonably believe that disclosure of your information is necessary to lessen or prevent a serious threat to the life, health or safety of any individual, or to public health or safety, and it is unreasonable or impracticable to obtain your consent
• it is reasonably necessary for the establishment, exercise or defence of a legal claim; or
• it is otherwise authorised or required by law.

STORAGE OF YOUR PERSONAL INFORMATION

All personal information we collect is stored on servers located in Australia and, for the most part, we do not disclose or transfer personal information overseas.

However, the cloud service providers we engage to provide us Australian based servers may operate overseas disaster recovery sites or have personnel overseas who may access the personal information we hold to assist us in managing our servers.

We also may use Google Analytics to track web traffic information which is operated by Google which stores information across multiple countries.

SENSITIVE INFORMATION

Collection of sensitive information

We may collect sensitive information about you during the course of providing you, our services. We will only collect this sensitive information where you consent to such collection and either directly provide us with this information or it is provided by a referring health care provider.

Types of sensitive information we collect

The sensitive information we collect may include the following:

• health information, history and reports
• referring health care provider and associated referral letters
• Medicare number, healthcare identifiers or concession card or other entitlement details
• any other sensitive information provided by you or a third party to us via our application software, website or platforms, or otherwise provided by you or a third party to us.

How we use your sensitive information

Your sensitive information will only be used for the purpose of:

• providing you with our services
• complying with our legal obligations, resolving disputes or enforcing our agreements with you
• sending you messages, reminders, notices, updates, security alerts, and other information requested by you
• any other purpose which is permitted or required under applicable privacy laws.

How we disclose your sensitive information

Your sensitive information will only be disclosed to third parties for the purpose of:

• performing the services
• any other purpose which is permitted or required under applicable privacy laws.

How you can withdraw consent

If you wish to withdraw your consent to our collection, use or disclosure of your sensitive information, please contact us using the contact details set out below. We will deal with all such requests within a reasonable timeframe.

MARKETING

We may at times send you marketing communications which will be done in accordance with the Spam Act 2003 (Cth) (Spam Act).

If we do, we may use email, SMS, our software application or portal, social media, phone or mail to send you direct marketing communications.

Where consent is needed, we will ask you for your consent before sending you marketing communications, except where you:

• have explicitly opted-in to receiving email marketing from us in the past
• were given the option to opt-out of email marketing when you initially signed up for one of our platforms and you did not do so.

You can, at any time, opt out of receiving marketing materials from us by using the opt-out facility provided (e.g., an unsubscribe link on emails we send you) or by contacting us via the details provided at the end of this privacy policy. We will implement such a request as soon as possible, however, cannot guarantee that such a response will be immediate.

DE-IDENTIFIED INFORMATION

The information we collect may have analytical, educational, or commercial value to us. Where we have de-identified the information we have collected, we reserve the right to process and distribute such information.

In addition to the above, we may also use your information in de-identified form for the purposes of research and product development activities. For example, this may include the development of new diagnostic tools and products, treatment methods and pathways. As we only use de-identified information for these purposes, you will not be identified as part of any of these activities.

SECURITY

We take reasonable steps to ensure your personal information is secure and protected from misuse or unauthorised access. Our information technology systems are password protected, and we use a range of administrative and technical measures to protect these systems.

LINKS

Our website and software applications may contain links to other websites. Those links are provided for convenience and may not remain current or be maintained. We are not responsible for the privacy practices of those linked websites, and we suggest you review the privacy policies of those websites before using them.

REQUESTING ACCESS OR CORRECTING YOUR PERSONAL INFORMATION

If you wish to request access to the personal information we hold about you, please contact us using the contact details set out below including your name and contact details. We may need to verify your identity before providing you with your personal information. In some cases, we may be unable to provide you with access to all your personal information and where this occurs, we will explain why. We will deal with all requests for access to personal information within a reasonable timeframe.

If you think that any personal information, we hold about you is inaccurate, please contact us using the contact details set out below and we will take reasonable steps to ensure that it is corrected.

COMPLAINTS

If you wish to complain about how we handle your personal information held by us, please contact us using the details set out below including your name and contact details. We will investigate your complaint promptly and respond to you within a reasonable timeframe.

CONTACT US

For further information about our privacy policy or practices, or to access or correct your personal information, or make a complaint, please contact us using the details set out below:

Email: privacy@cardionexus.com.au

Our privacy policy was last updated on July 2025

CardioNexus Heart Care App Deletion

Delete apps on your IOS device

You can easily remove apps from your iPhone. If you change your mind, you can download the apps again later.

Remove apps

Do any of the following:

• Remove an app from the Home Screen: Touch and hold the app on the Home Screen, tap Remove App, then tap Remove from Home Screen to keep it in App Library, or tap Delete App to delete it from iPhone.
• Delete an app from App Library and Home Screen: Touch and hold the app in App Library, tap Delete App, then tap Delete.

Tip: If you change your mind, you can redownload apps you’ve removed.

Delete apps on your Android device

Important: Some of these steps work only on Android 13 and up. Learn how to check your Android version.

Delete apps that you installed

1. Open the Google Play Store app .
2. At the top right, tap the Profile icon.
3. Tap Manage apps & devices  Manage.
4. Select the name of the app you want to delete.
5. Tap Uninstall.

Tip: If you delete or disable an app, you can add it back to your phone. If you bought an app, you can reinstall it without buying it again. Learn how to reinstall and re-enable apps.