Privacy policy

Last updated: March 2026

1. General

1.1 This Privacy Policy sets out how your Personal Information is collected, used, and disclosed by Salts Healthcare Australia Pty Ltd ACN 685 137 928, (we, us, our).

1.2 We are committed to protecting your privacy and complying with our obligations under the Privacy Act 1988 (Cth) (Privacy Act), the Australian Privacy Principles (APPs) and other laws that apply in respect of handling Personal Information.

1.3 We will update this Privacy Policy from time to time. The current version will always be available on our website.

1.4 In this Privacy Policy, we use the terms:

  1. ‘customers’ to refer to individuals who engage us to provide products;
  2. ‘suppliers’ to refer to individuals or individuals at businesses who provide us with goods or services;
  3. ‘visitors’ to refer to individuals who engage with us on our websites or social media channels, or who enquire about our functions or activities via electronic means;
  4. ‘applicants’ to refer to individuals who apply for employment or other engagement with us.

1.5 In some circumstances, you may belong to more than one of these groups, and multiple sections of this Privacy Policy will then apply to you.

2. What is Personal Information, and What Do We Collect?

2.1 ‘Personal Information’ is any information or opinion about you which personally identifies you or may reasonably be used to personally identify you, even if the information is not true, and whether or not it is in physical form.

2.2 ‘Sensitive Information’ is a subset of Personal Information and includes information or opinion about such things as health information, and information about an individual's racial or ethnic origin, political opinions, membership of a political association, religious or philosophical beliefs, membership of a trade union or other professional body, criminal record, and biometric information (that is, data derived from your physical characteristics, such as a fingerprint) and biometric templates (that is, a stored digital template of biometric information, such as a fingerprint or retina scan).

2.3 The kinds of Personal Information we collect about you depends on our relationship with you, and we limit the information we collect to what is reasonably necessary for one or more of our functions or activities. Generally, we may collect your name, contact details, marketing and communications preferences and other information relevant to providing you with the information and products you are seeking.

2.4 If you are a customer, we will also collect your billing and payment information, and information related to your orders and interactions with us. You may disclose other personal information to us in your interactions with us, and we may collect that personal information in notes we make about those interactions and about you. If you voluntarily provide health-related information (for example, when seeking product support), we will handle it securely and in accordance with the Privacy Act.

2.5 If you are a supplier, we will also collect your ABN (for sole traders and partnerships), business name, bank account details (for payment of your invoices), and information about your role.

2.6 If you are a visitor, we may also collect information about your use of our websites and the device you are using (including numbers that identify your device, IP address, geographic location of your IP address and device where that is relevant to the services and information we are providing, cookie information, and user preferences). You may choose to enable or disable information you share with us via our websites in your browser or device settings. Disabling the sharing of some information may affect your ability to use certain features of the websites, and your visitor experience generally.

2.7 If you are an applicant, depending on your potential or actual position with us, we will also generally collect your Personal Information contained within an application and CV/resume, employment history, personal information derived from a reference, personal information derived from an interview, personal information derived through testing (including psychometric or aptitude testing, as applicable), licences and other certificates and qualifications, and information included in a passport, birth certificate, visa or other documentation demonstrating your right to work in Australia.

2.8 We support your ability to make decisions about the Personal Information you provide to us, however if you choose not to provide us with the information requested, or it’s incomplete or inaccurate, we may not be able to provide you with the information or products you are seeking. If you are an applicant, refusal to provide Personal Information may mean we are unable to process your application.

3. How We Collect Your Personal Information

3.1 We will generally collect Personal Information directly from you when you interact with us, such as in person, by email, by phone, by enquiry or feedback form, or via our websites, social media channels (such as LinkedIn), interviews (via any method), any of our standard forms (including application forms), placing an order, contract negotiation, our employment and engagement application process, our surveys (where applicable), or any other means when you provide us with your Personal Information.

3.2 We may also need to collect Personal Information about you from third parties from time to time where it is necessary for us to do so and it is unreasonable or impractical to collect directly from you, where you have consented to us doing so, or where we are otherwise required to or authorised to by law. Those third parties include:

  1. if you are a customer or visitor: technology service providers, social media platforms, and any medical practitioners or allied health providers involved in your care;
  2. if you are a supplier: publicly available records such as the Australian Securities Investment Commission, and the Australian Business Register;
  3. if you are an applicant: referees when they provide references, academic institutions or training and certification providers, providers of licence and background-checking services, recruiters and other service providers who assist in the engagement process, and other publicly available sources such as social media platforms;

3.3 If you provide us with Personal Information about someone else, you must ensure that you are authorised to disclose that information to us and that, without us taking any further steps required by applicable privacy laws, we may collect, store, use and disclose such information for the purposes described in this Privacy Policy. Where we request you to do so, you must assist us with any requests by the individual to access or update the Personal Information you have collected from them and provided to us.

3.4 Except as otherwise permitted by law, we only collect Sensitive Information (which includes health information) about you if you consent to the collection of the information and if it is reasonably necessary for the performance of our functions and activities. Consent may be implied by the circumstances existing at the time of collection. There may also be circumstances under which we may collect Sensitive Information without your consent, as required or authorised by law.

4. Why Do We Collect, Hold, Use, and Disclose Your Personal Information?

4.1 We will generally collect, hold, use, and disclose your Personal Information if it is reasonably necessary for or directly related to the performance of our functions and activities and:

  1. to facilitate our internal business operations, including:
    1. establishing our relationship with you;
    2. maintaining and managing our relationship with you, and communicating with you in the ordinary course of that relationship;
    3. supplying you with information, products and services, and processing orders and payments, handling returns;
    4. detecting, investigating and preventing fraud;
    5. updating your Personal Information, including destroying or de-identifying it when it is no longer relevant (to the extent applicable);
    6. fulfilling our legal and regulatory requirements, both at law and under our contractual arrangements with you and others;
    7. analysing our products, and customer and supplier needs with a view to developing new or improved products and business operations;
    8. conducting market research and monitoring use of our products;
    9. contacting you to ask for your feedback or a testimonial;
    10. sending newsletters, product updates and promotional material;
    11. if you are a customer: to contact you (including via electronic messaging such as SMS and email, by mail, by phone, or in any other lawful manner) in relation to your order, enquiry, feedback or complaint;
    12. if you are a visitor: streamlining and personalising your experience within our websites, and tailoring our information and products for you;
    13. if you are a supplier: purchasing goods or services from you, and enquiring about your products and services;
    14. if you are an applicant: considering your application with us;
  2. to provide you with information about other products and services that we or our related entities and other affiliated organisations offer that may be of interest to you. You may unsubscribe from our mailing/marketing lists at any time by using the unsubscribe feature on any emails we send, or otherwise by contacting us in writing. We do not use your Sensitive Information for direct marketing purposes;
  3. to de-identify and aggregate Personal Information about you and your use of our products to improve the quality of our products, and for research purposes. After we delete Personal Information, we may retain de-identified and anonymised information (that can no longer be associated with you) and may continue to use this de-identified data indefinitely without further notice to you;
  4. for any other purpose identified at the time of collection or as otherwise permitted by law.

4.2 We may use or disclose Personal Information for secondary purposes where it would be reasonable to expect us to do so, and that secondary purpose is...

5. Third Party Content

5.1 From time to time, we may include third party content on our websites and social media accounts, including third party links to websites, applications or resources, as well as embedded media such as videos, images and articles.

5.2 We take reasonable measures to ensure we only include content from third parties who handle your Personal Information in a manner that meets or exceeds the standards required by Privacy Laws. However, if you access third party content, you acknowledge that you do so at your own risk, and we cannot make representations or warranties regarding third parties’ privacy practices. We encourage you to read the privacy policies and privacy collection notices of any third party resource you access via our websites.

6. Public Content

6.1 Our website may enable you to post product reviews or other user-generated content. If you choose to submit content to any public area of the website, this content will be public and accessible by anyone.

6.2 We cannot control how others may use this information and are not responsible for its privacy or security. You should exercise caution when deciding what information to make publicly available. We are not responsible for the accuracy, use, or misuse of any information you disclose or receive from third parties.

7. Cookies, Pixels and Web Beacons

7.1 Our websites use cookies, pixels and web beacons (Tracking Tools), including through the use of third party service providers.

  1. A “cookie” is a small data file placed on your machine or device which lets our digital service store information. Cookies are not executable programs and cannot do anything to your computer.
  2. A pixel or web beacon is a JavaScript code snippet embedded on a web page or email that collects data about user interactions and behaviour. Pixels are often used for remarketing (that is, serving targeted ads on social media platforms or other websites).

7.2 The main purpose of cookies is to identify users to create a personal record of when that user visits our websites and to prepare customised web pages for them so that we may provide our services more effectively. We may also use cookies to monitor the use of our websites and digital services, like the numbers and frequency of visitors to our websites, to help us improve our services and identify any problems that need fixing. If you choose not to accept cookies from our websites, you will not be able to maintain a session-based interaction and will be treated as an anonymous browser.

7.3 Our websites also use a number of third party services that utilise Tracking Tools. Use of your personal information by these third parties is also subject to their own privacy policies. For details on how each provider uses information collected through Tracking Tools, please refer to their respective websites. The third party services we use include:

  1. Google Analytics and Google Tag Manager, for audience measurement and website optimisation;
  2. Shopify Analytics, for revenue and market performance analytics; and
  3. Meta Pixel for advertising analytics and remarketing on Meta platforms such as Facebook and Instagram.

7.4 The information that is disclosed in relation to third party cookies is:

  1. information about your use of our website, your IP address, browser type, ISP, and referring/exit pages;
  2. pseudonymous identifiers such as cookie, browser and session IDs;
  3. session metrics such as your session start time, duration, pages per session and engagement time; and
  4. website engagement metrics such as clicks, time spent on pages and scroll behaviour.

7.5 Most browsers allow you to choose whether to accept cookies or not. If you do not wish to have cookies placed on your computer, please set your browser preferences to reject all cookies before accessing our websites. You may also adjust your browser settings or use browser extensions to block other Tracking Tools. However, please note that if you do this, you may not be able to use the full functionality of our websites.

8. Who We Disclose Personal Information To

8.1 We generally disclose your Personal Information for the purposes for which it was collected (set out above). We may disclose Personal Information about you to:

  1. our related entities, including Salts Healthcare Ltd based in the UK;
  2. our employees, contractors, consultants and other parties who require the information to assist us with the purposes for which it was collected, and with establishing, maintaining or terminating our relationship with you;
  3. government departments and agencies where required by law;
  4. if you are a customer, your medical practitioners or other allied health providers involved or previously involved in your care;
  5. third party service providers who assist us in operating and promoting our business and providing information, resources, goods and services to you or someone else on your behalf (including third party medical service providers, insurers, IT and technology service providers, recruitment providers, logistics and shipping providers, payment processor providers, email platform providers and professional advisers such as lawyers, accountants, and auditors). Some of the third party service providers include:
    • Shopify, who provides the e-commerce platform our website is on and a payments system;
    • Third-party logistics providers who provide order fulfilment and shipping services;
    • Australia Post and courier providers who provide delivery services; and/li>
    • Xero, who provides accounting and recordkeeping services;
  6. third parties to whom you have agreed we may disclose your information and where the information was collected from you (or from a third party on your behalf) for the purposes of passing it on to the third party; and
  7. any other entity as otherwise required or authorised by law, including regulatory bodies.

8.2 We may expand or reduce our business, and this may involve the sale and/or transfer of control of all or part of our business. Personal Information, where it is relevant to any part of the business for sale and/or transfer, may be disclosed to a proposed new owner or newly controlling entity for their due diligence purposes, and upon completion of a sale or transfer, will be transferred to the new owner or newly controlling party to be used for the purposes for which it was provided.

9. Direct Marketing

9.1 We will only send you direct marketing communications and information about our products via mail or email with your consent.

9.2 You may opt-out of receiving marketing communications from us by contacting us at the details below or by using the opt-out facilities provided in our communications.

9.3 We do not provide your Personal Information to other organisations for the purposes of their direct marketing and will not sell, rent, or lease our customer lists to third parties. Our practices in regard to our emails are designed to be compliant with anti-spam laws, including Australia’s Spam Act 2003 (Cth) and the Do Not Call Register Act 2006 (Cth). If you believe you have received marketing in violation of these laws or any other anti-spam law, please contact us using the contact information in this Privacy Policy.

10. Overseas Disclosure

10.1 We are assisted by a variety of external service providers to operate our business and to provide you or someone else on your behalf with the information and services sought. Some of these service providers may be located overseas, including Shopify, Klaviyo, Mailchimp, Microsoft, Google, and Meta, located in Canada and the USA.

10.2 We take reasonable steps to ensure these service providers have appropriate security for your Personal Information and use it only for the purposes for which it was collected.

11. How We Store and Protect Personal Information

11.1 We store your Personal Information in different ways, including in paper and electronic form. We take reasonable technical and organisation measures to ensure your Personal Information is stored on secure servers (which may be based in Australia or overseas) in a manner that reasonably protects it from interference, misuse and loss and from unauthorised access, modification or disclosure, including electronic and physical security measures, including:

  • limiting access to the Personal Information we collect about you;
  • only providing access to Personal Information once proper identification has been given; and
  • requiring third party providers to have acceptable security measures to keep Personal Information secure.

11.2 When we no longer need your Personal Information for the purpose for which we collected it, we will take reasonable steps to destroy or permanently de-identify your Personal Information in line with applicable law.

11.3 Despite the reasonable steps we take to secure your Personal Information, if you provide any Personal Information to us via our websites, email or social media accounts, or if we provide Personal Information to you by such means, the privacy, security and integrity of your Personal Information cannot be guaranteed during its transmission unless we have indicated beforehand that a particular transaction or transmission of information will be protected (for example, by encryption).

12. Accessing or Correcting Your Personal Information

12.1 You may access the Personal Information we hold about you, subject to certain exceptions. If you wish to access your Personal Information, please contact us via our contact details set out below.

12.2 There are no charges for requesting access to or the correction of your Personal Information, however we reserve our rights to charge you any reasonable administration fees associated with your request. We will notify you in advance of any applicable fees.

12.3 We endeavour to respond to those requests within 30 days, but will otherwise respond within a reasonable period. We may decline a request for access to Personal Information in circumstances prescribed by the Privacy Act. If we decline a request for access, where reasonable, we will provide you our reasons and information about your ability to complain about such refusal.

12.4 In order to protect the confidentiality of your Personal Information, details of your information will only ever be passed on to you where we are satisfied that the information relates to you. Accordingly, we may request documentation from you which confirms your identity before passing on any Personal Information which relates to you.

12.5 If you believe the information we hold about you is incomplete, not up to date, or is inaccurate, please advise us as soon as practicable. We will take reasonable steps to correct the information if we agree that it is incomplete, out of date, or inaccurate. We will strive to process any request within 30 days.

13. Children’s Privacy

13.1 Our websites are not intended for individuals under the age of 13 (Children). We do not knowingly collect or store Personal Information from Children. If we learn that a child under the age of 13 has provided us with Personal Information without verifiable parental consent, we will promptly take reasonable and appropriate actions to remove such user and delete any of their Personal Information from our servers.

14. Making a Complaint

14.1 Complaints about our Privacy Policy or the way we handle your Personal Information should first be directed to us at the details set out above.

14.2 We will investigate and attempt to resolve your complaint in accordance with the Privacy Act. If you are not satisfied with the outcome of this process, then you may contact the Office of the Information Commissioner, Australia. To lodge a complaint, visit the ‘Complaints’ section of the Information Commissioner’s website, located at www.oaic.gov.au/privacy/privacy-complaints, to obtain the relevant complaint forms, or contact the Information Commissioner’s office.

15. Further information

15.1 If you require further information regarding this Privacy Policy contact our Privacy Officers:

Email: [email protected]
Phone: +44 121 333 2000
Salts Healthcare Limited UK
Richard Street
Aston
Birmingham
B7 4AA

15.2 Further information about the Privacy Act is available at www.oaic.gov.au.