
Privacy & Confidentiality Policy
The Maverick Manner Group recognise that your privacy is a fundamental right. We are committed to protecting your personal information in accordance with State and Commonwealth legislation, the NDIS Code of Conduct, and other relevant Australian laws.
We only collect, use, and disclose your information in ways that comply with these laws and ensure your right to choice and control.
1. Collection and Use
of Personal Information
The Maverick Manner Group provides 1:1 and group support services focused on capacity building and independence. To provide these services effectively, we need to collect personal details such as your name, address, and telephone number.
We also collect details about your circumstances, NDIS goals, and health history to help us understand your situation and service needs. We may also collect information about important people in your life, such as family members or other services involved in your care.
Your Choice: You do not have to provide us with any personal information that you do not want to. However, without relevant information, we may not be able to provide you with the specific services or safety measures you require.
2. Disclosure of Personal Information
We do not provide your personal information to other people or organisations unless:
-
We have your express consent to do so (for example, sharing a progress report with your Occupational Therapist).
-
Such disclosure is allowed or required by law (such as mandatory reporting or disclosing information to emergency services to protect
someone’s safety).
3. Storage and Security
The Maverick Manner Group takes strict measures to ensure that your personal information is protected from unauthorised access, loss, misuse, or alteration.
-
Hybrid Approach: We use paper for initial Service Agreements and brochures for your convenience. Once signed, these are transitioned into our digital systems.
-
Encrypted Systems: As a primarily paperless service, all ongoing support records are stored in secure, encrypted digital "vaults" on protected Australian servers.
-
Restricted Access: To ensure documentation is accurate and consistent, access is strictly limited to authorised Management and your Direct Support Team. We use Two-Factor Authentication (2FA) to maintain this high level of security.
4. Accessing Your
Personal Information
We recognise your right to access the information we have collected about you. You are encouraged to contact us at any time to request access to your information to ensure its accuracy or for any other purpose.
We will only restrict this access, in part or full, when we have a legal reason to do so (such as to protect another person’s privacy or safety). We require proof of identity before providing access to ensure your information remains secure and confidential.
5. Accessing Another
Person’s Information
If you are an authorised representative (such as a lawyer, advocate, or guardian) seeking access to a participant's information, you must make your request in writing. We will require evidence of your legal authority to act on the person’s behalf before any data is released.
6. Retention and Disposal
In line with the Health Records Act 2001 (Vic) and the Public Records Act 1973 (Vic), we retain digital records for 7 years (or until age 25 for children). When personal information is no longer required, it is destroyed in a secure and permanent manner.
7. Contact and Concerns
If you have questions about how your information is handled, or if you wish to raise a concern, please contact our team directly:
If you feel your concern has not been resolved, you can contact the NDIS Quality and Safeguards Commission (1800 035 544) or the Office of the Victorian Information Commissioner (OVIC).
