Yorgum is committed to protecting client and employee’s information. Any personal information collected will be handled in
accordance with the Australian Privacy Principles (APPs) outlined in the Privacy Act.

Yorgum is committed to protecting client and employee’s information.


This policy must be followed by all employees and Directors.

Relevant Legislation and Standards

Related Policies and Documents


Privacy – protects consumers from unfair or unauthorised use of personal or sensitive information.

Personal information – is any information that can lead to an individual being identified.

Sensitive information – any information about an individual’s racial or ethnic origin, sexuality, health, religious/philosophical/political beliefs, criminal record.

Confidentiality – relates to how information that has been disclosed in the course of a professional relationship is treated.

Personal Information Handling Practices

Collection of personal information

Yorgum will only collect personal information necessary to deliver services and conduct the business activities that support this. The following types of personal information may be collected, but is not limited to:

Sensitive information will be collected, if necessary, for service provision and to meet funding body agreements. Sensitive information collected may include details of a complaint, racial or ethnic origin, and/or other health information or services sought by the individual.

Collecting personal information from children and young people

Personal information about children and young people may be collected directly, through their parents or guardians, or from their education providers. If children and young people are over the age of 16, information will be collected directly as they are likely to have the capacity to understand any privacy notices provided to them and to give informed consent to collection. For children under the age of 16, or where capacity to provide consent is at issue, a parent or guardian will be notified, and their consent sought.


Clients have the right to remain anonymous or use a pseudonym, as per the Privacy Act (1988). However, in some of the work undertaken in Yorgum, it may be impracticable for clients to use a pseudonym or remain anonymous. There may be certain circumstances where Yorgum is required or authorised by law to only deal with identified individuals.

Methods of collecting personal information

Personal information is collected directly from individuals or their authorised representatives and through referrals from other service providers. Methods used to collect this information include:

Storage and security of personal information

Yorgum will take all reasonable steps to protect personal information from misuse, interference and loss, unauthorised access, modification or disclosure and undertakes the following measures:

Use of personal information

Yorgum uses personal information for the following reasons:

  1. To provide services to clients, which may include:
    1. The provision of counselling, support and advocacy
    2. Undertake family tracing
    3. Organising and managing reunions
  2. Performing employment and personnel functions – Yorgum collects personal information from employees and job applicants and may store information for the purposes of future recruitment.
  3. Meet regulatory and funding requirements – for the purposes of internal reporting and improvement of services.
  4. Marketing purposes – Yorgum may use personal information to communicate with individuals through direct marketing to inform them about Yorgum events.

Disclosure of personal information

Yorgum will not use or disclose client’s personal information to any other persons or organisations for any other purpose unless:

Accessing personal information and correction

Individuals may request access to the personal information that Yorgum holds about them. Requests to access personal information:

All requests for access are processed in conjunction with privacy legislation, as soon as practicable and generally within 30 days. Yorgum can refuse a client access to their personal information only if providing access would:

and if:

If access to view a client file is refused, a written reason for the refusal (with the reason relating to the exemptions above) will be provided.

Maintaining the quality of personal information

Yorgum will take reasonable steps to make sure that client’s personal information is accurate, complete and up to date. Counsellors will check contact details with clients before embarking on outreach or at a client appointment.

If a client needs to change their personal information that is inaccurate, incomplete or out of date, they should advise Yorgum staff and all reasonable steps to correct the information will be taken.

Unsolicited personal information

Personal information unintentionally received by Yorgum, such as misdirected mail or promotional flyers, will be disposed of accordingly.

Disclosure of personal information to overseas recipients

Yorgum does not disclose personal information to overseas recipients.

Notifiable Data Breaches Scheme

In the event of any loss or unauthorised access or disclosure of personal information that is likely to result in serious harm, Yorgum will:

Privacy Complaints